Renew an internally signed certificate for an external component
Steps
Create a certificate request in the external component.
Sign the certificate with the internal CA.
Export the signed certificate and import it to the external component.
If an external gateway trusts the internal VPN CA and the internal VPN CA has been renewed, create a certificate for the external gateway and sign it with the new internal VPN CA.
You must also set the new VPN CA as a trusted CA in the External Gateway’s properties and also in the properties of the VPN Profile element that is used in the VPN configuration.