hands-on lab

Design and Configure Point-to-Site VPN with Azure Virtual Network Gateway

Up to 1h 30m
Get guided in a real environmentPractice with a step-by-step scenario in a real, provisioned environment.
Learn and validateUse validations to check your solutions every step of the way.
See resultsTrack your knowledge and monitor your progress.
Lab description

Azure Virtual Network is a service provided by Microsoft Azure that allows users to create and manage virtual private networks (VPNs) within the Azure cloud environment. It enables the creation of isolated networks that can securely connect to other Azure services or to on-premises networks. With Azure Virtual Network, users can create and manage virtual machines (VMs), control network traffic, and set up network security policies to protect their data and applications.

This service is an essential component for building complex, multi-tier applications that require secure and reliable communication between different components. Azure Virtual Network provides flexibility and scalability to meet the changing needs of businesses of all sizes, making it a popular choice for organizations looking to move to the cloud.

You will learn how to use Azure virtual network gateway resource to configure and deploy Point-to-site VPN in this hands-on lab.

Learning objectives

Upon completion of this advanced-level lab, you will be able to:

  • Deploy a virtual network gateway resource
  • Create a self-signed certificate using Windows Server
  • Understand the VPN connection methodology

Intended audience

  • Candidates for Azure Network Engineer Exam (AZ-700)
  • Cloud Architects
  • Network Engineers
  • DevOps Engineers
  • Software Engineers


Familiarity with the following will be beneficial but is not required:

  • Azure Virtual Machine
  • Azure Virtual Network

The following content can be used to fulfill the prerequisites:


December 7th, 2023 - Updated the instructions and screenshots to reflect the latest UI

20th September 2023: Updated instruction to resolve the certificate error

Environment before

Environment after

About the author
Learning paths

Parveen is an Azure advocate with previous experience in the professional consulting services industries. He specializes in infrastructure and DevOps with a wide range of knowledge in security and access management. He is also an Azure Certified - DevOps Engineer Expert, Security Engineer, Developer Associate, Administrator Associate, CompTIA Certified - Network+, Security+, and AWS Cloud Practitioner.
Parveen enjoys writing about cloud technologies and sharing the knowledge with the community to help students upskill in the cloud.

Covered topics
Lab steps
Logging in to the Microsoft Azure Portal
Creating an Azure Network Gateway using Azure Portal
Connecting to the Azure Virtual Machine (RDP)
Creating a Self-Signed Certificate using Windows PowerShell
Configuring the Point to Site Configuration on Virtual Network Gateway and Connecting using VPN Client