Your remote company users work from their laptops and access the applications stored in Azure by using a point-to-site VPN connections. You will use certificates generated from an on-premises-based certifiate authority (CA). Which certificate should be stored where?
Experience Level: Senior
Tags: Azure CloudAzure Virtual Networks
Answer
Trusted Root Certification Authorities certificate store on each laptop must contain the root CA certificate with only the public key. If the private key was present, the CA would be compromised as everyone would be able to generate their own certificates using the CA private key.
The user's Personal store on each laptop must contain the user's certificate that has the private key.
The Azure VPN gateway must contain the root CA certificate with only the public key.
Related Azure Cloud job interview questions
According to Microsoft Cloud Adoption Framework (CAF), what are the three specific terms related to Management phaze that can help improve conversations among business stakeholders?
Microsoft Cloud Adoption Framework (CAF) JuniorWhat are 6 key steps for establishing a management baseline according to Microsoft Cloud Adoption Framework (CAF)?
Microsoft Cloud Adoption Framework (CAF) JuniorWhat is management baseline according to Microsoft Cloud Adoption Framework (CAF)?
Microsoft Cloud Adoption Framework (CAF) JuniorWhat are the 5 disciplines of cloud governance according to Microsoft Cloud Adoption Framework (CAF)?
Microsoft Cloud Adoption Framework (CAF) JuniorIs Cloud Security Posture Management (CSPM) available for all Azure Subscriptions?
Microsoft Defender Junior