So I've googled, read article after article... and still don't have a good answer. I'm trying to move off of pptp for obvious reasons.
Setup SSTP which is really nice one port one cert, everyone is happy yay. Not so fast, no support for legacy devices, mac, or mobile devices.
So now I'm back at square one.
So lets look at L2TP well now I need to setup a certificate authority, too complicated for an old protocol.
Everyone screams OpenVPN super secure, routes easy, ect ect... So lets give this a go.....
I can't figure out the steps to get his up and running on a windows box correctly, instructions imo aren't really clear, they assume I have knowledge of a few things that I do not. Then I find out I have to generate a cert for every device that connects..? thats annoying, I really can't use one cert from a CA like with SSTP? setup my users, my firewall, and my server settings, and then use it. So about the users no LDAP support so my current authentication doesn't work so more passwords for users to remember and write down.
What other options do I have? VPN's have been around for a long time why is this complicated. PPTP and SSTP are easy takes 5 min to get it setup running and allowing user to connect. And I can get users with devices I can't access to connect simply.
Ugh sorry for the partial rant, I'm a little frustrated with something that should be simple, imo.