Hi guys,
one of the customers my company has, wants to improve the security of the VPN connections and to do that, they want to use client based certificate authentication while using SSTP as tunnel-protocol.
First question: is this possible and what server roles beside AD and CA for a private PKI are needed?
Second question: Has someone a good tutorial for this, as I didn't find anything with client certificates on the Internet and I am quite a noob with the TMG?