Hello,
For a while i've been using a self signed certificate and deploying the mikrotiks CA to client computers that need access.
I wanted to automate this and make it simpler by adding R3 certificates for SSTP connections.
But when i switch SSTP to the let's encrypt certificate, Windows 10 clients cant connect with error:
"The client and server cannot communicate, because they do not possess a common algorithm"
I saw this post saying i need to use a RSA certificate but i already use it.
Post: viewtopic.php?t=179101
Certificate details:
4 T name="_.domain.com.pfx_0" issuer=C=US,O=Let's Encrypt,CN=R3 digest-algorithm=sha256 key-type=rsa
common-name="*.domain.com" key-size=3072 subject-alt-name=DNS:*.domain.com,DNS:domain.com
days-valid=89 trusted=yes key-usage=digital-signature,key-encipherment,tls-server,tls-client
serial-number="04D83D3B8B9BB0E6A17F5CBBA05F30C843FE"
fingerprint="425608abde33a9593bb5ff4d78ef9ddebd9d3454249616609afa169812f248eb"
akid=142eb317b75856cbae500940e61faf9d8b14c2c6 skid=2c816f1673a8caa012f75d5f60012b6dc1670a30
invalid-before=nov/23/2021 08:27:23 invalid-after=feb/21/2022 08:27:22 expires-after=12w2d22h22m14s