I've been having some issues with creating a self-signed certificate. I tried using IIS and it created everything correct except the extended key usage setting it is missing "ClientAuth" it seems to have everything else. I also tried using OpenSSL but not having luck creating anything but V1 certificates. Everything I can find refers to the directions for sending off a CSR. I'm using this for a small business so they can use AD Auth for their VPN. I'd also like to find something that is signed for a longer time than 1 year if possible but with creating the cert via IIS I couldn't find anyway to extend that? Any help would be greatly appreciated this is not something I work with very often.
That was super easy to follow and use, the cert is up and running now. Still can't connect but I think that may be a different issue. Continuing to troubleshoot that. Thanks for the suggestion on this!