1. PDQ Deploy & Inventory Help Center
  2. Documentation
  3. RAS VPN Setup Wizard

RAS VPN Setup Wizard Frequently Asked Questions

Please note that the RAS VPN Setup Wizard is a free tool that is provided as-is. We do not offer any additional product support for it beyond the information found in this knowledge base.

Purpose:

Common questions & answers for RAS VPN Setup Wizard

Resolution:

The information below is considered accurate through August 2020.

  1. What type of Certificate is created?
  2. What if I want to modify the server settings after I finished the install?
  3. What ports need to be open for clients to connect to the server?
  4. What type of connection is being used?
  5. Can I use PDQ Deploy to install the client connections?
  6. How is the client connection automated?
  7. Does the configured RAS client use split tunneling?
  8. How do I check if my port is forwarded after the installation is complete?
  9. How do I retrieve the certificate that was generated from the installation?
  10. How do I check which User Group I granted access to connect to my server?
  11. How many clients can connect to my RAS server at once?
  12. How can I increase the maximum number of connections allowed to my RAS server?

Q: What type of Certificate is created?

A: RSA 2048 cert with a 10-year expiration date

Q: What if I want to modify the server settings after I finished the install?

A: You can run the installer again to make configuration changes to your server setup.

Q: What ports need to be open for clients to connect to the server?

A: TCP Port 443

Q: What type of connection is being used?

A: Secure Socket Tunneling Protocol

Q: Can I use PDQ Deploy to install the client connections?

A: Yes, silent parameters /qn

Q: How is the client connection automated?

A: The connection will be established when a user logs into Windows. The user will be able to disconnect and reconnect at any point.

Q: Does the configured RAS client use split tunneling?

A: Yes, but this can also be changed after the fact on the client.

Q: How do I check if my port is forwarded after the installation is complete?

A: You can use Test-NetConnection -port 443 to your server that you completed the RAS setup on.

Q: How do I retrieve the certificate that was generated from the installation?

A: You can access the certificate from the cert store on the server you're completed the RAS setup on using the password you chose during the installation.

Q: How do I check which User Group I granted access to connect to my server?

A: Network Policy Server -> Policies

Q: How many clients can connect to my RAS server at once?

A: By default, the RAS VPN Setup Wizard limits the server to 200 concurrent connections.

Q: How can I increase the maximum number of connections allowed to my RAS server?

A: The number of connections to your RAS server is governed by the number of SSTP ports configured in the Routing and Remote Access role. This number can be set using the Set-VpnServerConfiguration command in PowerShell. The following line will set the maximum connections to 500:

Set-VpnServerConfiguration -SstpPorts 500

After changing the number of SSTP ports on your sever, you'll need to restart the Remote Access service. This can be done by running this line of PowerShell:

Restart-Service RasMan -Force
Chris James
Updated

Related articles

Still have a question or want to share what you have learned? Visit our Community to get help and collaborate with others.