4. Test the certificates have issued successfully
Validate Computer and User certificate
- Logon to test computer and test user
- Issue gpupdate /force
- Ensure user and computer certificate are in the certificate stores
Validate NPS server certificate
- Restart the NPS server
- Ensure NPS server certificate is in the personal certificate store
Validate VPN server certificate
- Logon to the VPN server
- Ensure VPN server certificate is in the personal certificate store
- On the General tab, confirm that the date listed under Valid from is today's date. If it isn't, you might have selected the incorrect certificate.
- On the Details tab, select Enhanced Key Usage, and verify that IP security IKE intermediate and Server Authentication display in the list.