Software⏱️ 4 min read📅 2026-06-11

How to Fix Error 789 Error – How to select client certificate for Azure Point-to-Site VPN, to fix (Error 789)

Error 789 Azure Point-to-Site VPN client certificate selection issue.

Quick Answer: Check the Azure Virtual Network settings and ensure that the client authentication certificate is correctly configured and imported.

📋 Table of Contents

  1. 💡 Why You Are Getting This Error
  2. 🛠️ Step-by-Step Verified Fixes
  3. 💡 Conclusion

The error 'A certificate could not be found that can be used with this Extensible Authentication Protocol' (Error 798) affects users who are setting up a point-to-site VPN connection from their Windows 8.1 client to an Azure Virtual Network. This issue is frustrating as it prevents the user from establishing a secure connection to the VPN, and multiple attempts to resolve the problem without success can be discouraging.

Fortunately, this error is not unique to the user's configuration, but rather a common issue that can be resolved by following specific troubleshooting steps.

💡 Why You Are Getting This Error

  • The primary reason for this error is that the Azure VPN client requires a specific type of certificate for authentication, which may not be correctly configured or imported on the user's machine. This can happen when the certificate is not properly installed, not correctly imported into the Azure VPN client, or not recognized by the client.
  • Another alternative cause could be that the client and server certificates do not meet the requirements specified in Microsoft knowledge base article 814394, which may require additional configuration or modifications to resolve the issue.

🛠️ Step-by-Step Verified Fixes

Enabling Certificate Pre-configuration

  1. Step 1: Step 1: Open the Azure portal and navigate to the 'Virtual Network' section. Click on the name of your virtual network and then click on 'Network interfaces' in the left-hand menu.
  2. Step 2: Step 2: In the 'Network interfaces' page, select the VPN gateway for which you want to enable certificate pre-configuration. Then, click on the 'Properties' button next to the VPN gateway.
  3. Step 3: Step 3: In the 'Properties' window, scroll down to the 'Authentication' section and toggle the switch next to 'Use client certificate authentication' to the 'On' position.
  4. Step 4: Step 4: Save your changes and then close the Azure portal.

Manually Selecting a Client Certificate

  1. Step 1: Step 1: Open the Azure VPN client executable on your machine and navigate to the 'Settings' or 'Preferences' section.
  2. Step 2: Step 2: In the settings window, look for an option related to certificate authentication and select it. This may be labeled as 'Certificate authentication' or something similar.
  3. Step 3: Step 3: Browse to the location of your client certificate and select it. Make sure that the correct certificate is selected and not a different one.
  4. Step 4: Step 4: Save your changes and then restart the Azure VPN client executable.

💡 Conclusion

To resolve the 'A certificate could not be found that can be used with this Extensible Authentication Protocol' error, try enabling certificate pre-configuration on the Azure portal or manually selecting a client certificate in the Azure VPN client settings. If you are still experiencing issues, refer to Microsoft knowledge base article 814394 for additional guidance and troubleshooting steps.

Did this fix your problem?

If not, try searching for specific error codes.

🔍 Search Error Database

❓ Frequently Asked Questions

🛠️ Related Fixes

How to Fix: Pc crashes shortly after launching game (rainbow

Fix Pc crashes shortly after launching game (rainbow six siege). Compl

How to Fix: Installing an APK on a locked down phone

Installing an APK on a locked down phone: Try using a rooted device, e

How to Fix: New PC build- no signal and no clue

Fix New PC build- no signal and no clue. Complete troubleshooting guid