I was testing the client to site function of Windows Azure. All went well until I tried to connect and got this error.

A certificate could not be found that can be used with this Extensible Authentication Protocol. (Error 798)

Turns out this was an easy fix. The Azure help page isn’t very clear http://msdn.microsoft.com/en-us/library/azure/dn133792.aspx

But the certificate needs to be in the user store, not the computer store!

Azure Dialer


Once I sorted out the connection I allowed ICMP ping request and response through to my virtual network test machine on Azure by editing the Windows Firewall.

This test machine is hosted on the network as shown in my remote VPN client routing table.

Route Table

Route table

Then a test ping, which worked fine. All done. Remote client to site VPN to Azure tenant working nicely!

Test Ping



VPN Connection