If you are deploying SSTP VPN for Windows clients and get the error: "The revocation function was unable to check revocation because the revocation server was offline.", you are most likely using your own internal PKI and the certificate used for SSTP does not have a Certificate Revocation List (CRL) accessible from the outside, so the client machine is failing checking whether or not the certificate has been revoked from the CA. If you simply want to bypass this, you can edit the registry on the client:
In the following video I setup SSTP VPN almost from scratch in about 10 minutes. I did run into a snag while Windows complained about a CN (common name) mismatch while it was actually a Subject Alternative Name DNS mismatch, not CN. I inadvertently proved that SSTP relies on the SAN name in the certificate. After 41 years of being in business they still don't get their error messages right.
sysadminshowto.com for the NoCertRevocationCheck reg string
Have you ever wondered what life might be like if the Windows 10 OS somehow had a single folder that… Read More
There could be any number of reasons for needing to flash manufacturer stock OEM firmware on a Samsung Galaxy S9… Read More
Designing e-mail solutions on a large scale can be a complex and costly challenge for a business: you need to… Read More