I’m preparing to migrate a production point-to-site configuration’s authentication method from Azure Certificates to RADIUS. Configuring NPS and RADIUS authentication are straight-forward, but the decision on how to enact this change is where I’m struggling. I’d like to avoid provisioning any additional resources in Azure, but I don’t see how to accomplish this change without disrupting the production Authentication method.
In the Azure portal, there is a radio button you can toggle between authentication types: Azure Certificates and RADIUS. Does anyone know if you can switch between the two authentication methods without losing Root Certificates or any other point-to-site configuration settings? Theoretically, I would like to test out the RADIUS authentication, then switch back to Azure certificates until we’re ready to cutover without impacting the end users. Has anyone tested this?