We value your privacy

We use cookies to enhance your browsing experience, serve personalized ads or content, and analyze our traffic. By clicking "Accept All", you consent to our use of cookies.

Customize Consent Preferences

We use cookies to help you navigate efficiently and perform certain functions. You will find detailed information about all cookies under each consent category below.

The cookies that are categorized as "Necessary" are stored on your browser as they are essential for enabling the basic functionalities of the site. ... 

Always Active

Necessary cookies are required to enable the basic features of this site, such as providing secure log-in or adjusting your consent preferences. These cookies do not store any personally identifiable data.

No cookies to display.

Functional cookies help perform certain functionalities like sharing the content of the website on social media platforms, collecting feedback, and other third-party features.

No cookies to display.

Analytical cookies are used to understand how visitors interact with the website. These cookies help provide information on metrics such as the number of visitors, bounce rate, traffic source, etc.

No cookies to display.

Performance cookies are used to understand and analyze the key performance indexes of the website which helps in delivering a better user experience for the visitors.

No cookies to display.

Advertisement cookies are used to provide visitors with customized advertisements based on the pages you visited previously and to analyze the effectiveness of the ad campaigns.

No cookies to display.

Loading

Azure Gateway – Point-to-Site Windows VPN Client – Error processing ID payload

Luke SmithUncategorized

Issue

You have configured a Point-to-Site VPN on the Azure Gateway

The Azure Gateway also has Site-to-Site Connections using BGP or Static Routes

The Point-to-Site is configured for SSTP and IKEv2

You configure the VPN and notice that only SSTP is used and when trying to manually set IKEv2 the client fails with the following error:

“Error processing ID payload”

Resolution 1

First check how many routes are being published on the VPN

  1. Select an Azure VM > Select Network > Select Network Card > Select Effective Routes
  2. Count the number of Routes

If you have more than 25 routes (published on the VPN) you will need to limit the routes by summarizing them below 25 routes.

The Windows VPN Client built into Windows 10 (1607 and above) doesn’t support more than 25 routes hence they this fails.

If you are not able to limit these routes you will need to Use SSTP

NB: SSTP only allows 128 concurrent connection

Resolution 2

If you are running Windows 10 builds 1607-1709 update to the latest windows 10 build or apply the following changes\fixes:

Install the update.

OS version

Date

Number/Link

Windows Server 2016

Windows 10 Version 1607

January 17, 2018

KB4057142

Windows 10 Version 1703

January 17, 2018

KB4057144

Windows 10 Version 1709

March 22, 2018

KB4089848

Set the registry key value. Create or set “HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\RasMan\ IKEv2\DisableCertReqPayload” REG_DWORD key in the registry to 1.

Resolution 3

If you are running Windows 10 builds below 1607 you will need to update to the latest windows 10 build