Azure Active Directory Authentication with Open VPN

Until recent you could connect to your VNet in Azure with certificate-based or RADIUS authentication but now Microsoft Azure support native Azure Active Directory authentication with Open VPN protocol.
Azure AD integration with Open VPN enables user-based policies, multi-factor authentication (MFA) together with conditional access for P2S VPN. In order for Azure AD authentication to work, requires both Azure VPN gateway and a new Azure VPN Client which will obtain and validate an Azure AD token during authentication.


Steps needed to get going with Azure AD Authentication on the VPN gateway:


If you have any question or need help with setup, feel free to email me at or comment down below.

Disclaimer: All information on this blog is offered "as is" with no warranty. It is strongly recommended that you verify all information and validate all scripts in isolated test environments before using them in production environments.