带有基本 SKU 的 Azure 点到站点 VPN 无法在 Windows 10 上运行（错误代码 = 720 错误源 = RAS）

Question

我正在尝试连接到 Azure vNET 网关，但没有成功。它以 ErrorCode = 720 ErrorSource = RAS 结束。有没有人在以下情况下遇到过这个问题？

• 配置有基本 SKU 的 Azure vNET 网关。
• VpnStrategy 是 Windows 10 的 SSTP
• 身份验证：客户端证书（自签名）
• 根证书和客户端证书都在当前用户个人存储中。他们已经解决了。
• 根证书存储在当前用户的可信根路径中
• 根证书保存在 Azure vpn 网关用户配置中，无需换行
• 不想创建其他 SKU 以在 poc 上节省 $$
• 删除了所有 WAN 微型端口适配器并重新启动了机器，但没有成功。它们会自动重新创建
• 我无法在此论坛中共享证书（root 或客户端），因为我在日志中显示了 vpn 网关端点（出于安全原因）

按执行顺序来自本地机器的事件日志：

CoId={3285D778-432A-4746-B74C-8B95FECEB53E}: The user SYSTEM has started dialing a Connection Manager connection using a per-user connection profile named az-aks-vnet-v2. The connection settings are: 
Dial-in User = P2SDemoClientCert
VpnStrategy = SSTP
DataEncryption = Require
PrerequisiteEntry = 
AutoLogon = No
UseRasCredentials = Yes
Authentication Type = EAP <Microsoft: Smart Card or other certificate>
Ipv4DefaultGateway = No
Ipv4AddressAssignment = By Server
Ipv4DNSServerAssignment = By Server
Ipv6DefaultGateway = Yes
Ipv6AddressAssignment = By Server
Ipv6DNSServerAssignment = By Server
IpDnsFlags = 
IpNBTEnabled = Yes
UseFlags = Private Connection
ConnectOnWinlogon = No.

CoId={3285D778-432A-4746-B74C-8B95FECEB53E}: The user SYSTEM is trying to establish a link to the Remote Access Server for the connection named az-aks-vnet-v2 using the following device: 
Server address/Phone Number = azuregateway-b80c0077-e69d-4f0c-8f50-baa0c7a6e23e-0fe0aceeddbb.vpn.azure.com
Device = WAN Miniport (SSTP)
Port = VPN1-1
MediaType = VPN.

CoId={3285D778-432A-4746-B74C-8B95FECEB53E}: The user SYSTEM has successfully established a link to the Remote Access Server using the following device: 
Server address/Phone Number = azuregateway-b80c0077-e69d-4f0c-8f50-baa0c7a6e23e-0fe0aceeddbb.vpn.azure.com
Device = WAN Miniport (SSTP)
Port = VPN1-1
MediaType = VPN.

CoId={3285D778-432A-4746-B74C-8B95FECEB53E}: The link to the Remote Access Server has been established by user SYSTEM.

CoId={3285D778-432A-4746-B74C-8B95FECEB53E}: The user SYSTEM dialed a connection named az-aks-vnet-v2 which has failed. The error code returned on failure is 720.

VPN 日志：

******************************************************************
    Operating System      : Windows NT 10.0 
    Dialer Version        : 7.2.18362.1
    Connection Name       : az-aks-vnet-v2
    All Users/Single User : Single User
    Start Date/Time       : 6/22/2020, 10:31:31
******************************************************************
    Module Name, Time, Log ID, Log Item Name, Other Info
    For Connection Type, 0=dial-up, 1=VPN, 2=VPN over dial-up
******************************************************************
[cmdial32]  10:31:31    03  Pre-Init Event  CallingProcess = C:\WINDOWS\system32\rasautou.exe
[cmdial32]  10:31:40    04  Pre-Connect Event   ConnectionType = 1
[cmdial32]  10:31:40    06  Pre-Tunnel Event    UserName = P2SDemoClientCert Domain =  DUNSetting = b80c0077-e69d-4f0c-8f50-baa0c7a6e23e Tunnel DeviceName =  TunnelAddress = azuregateway-b80c0077-e69d-4f0c-8f50-baa0c7a6e23e-0fe0aceeddbb.vpn.azure.com
[cmdial32]  10:31:42    21  On-Error Event  ErrorCode = 720 ErrorSource = RAS

在此先感谢您的帮助。

Answer 1

问题解决了，我只是需要休息一下电脑，晚上散步！这就是我为解决问题所做的工作-

• 打开设备管理器
• 转至网络适配器
• 卸载所有名称以“WAN Miniport”开头的适配器。对安装的每个“WAN 微型端口驱动程序”重复该步骤
• 我没有重启机器。
• 右键单击“网络适配器”并选择“扫描硬件更改”
• 所有 WAN 微型端口适配器将立即重新出现

完成上述步骤后，我能够连接到 VPN 网关并使用私有 ip 连接到 VM。

感谢svenvdveen提供的解决方案，但无需重新启动。我之前遵循了相同的说明（两次），然后重新启动了机器，但没有成功！