SSTP: Microsoft new VPN tunnel using SSL is coming – please get ready to try it out !

Hi All,

I am very happy to announce that SSTP will be first time released to all our TAP and techbeta customers via Vista SP1 beta and Windows Server 2008 RC0 release which was released on Sept 25th, 2007

To get your hands dirty with SSTP, work with your Microsoft TAP contact if you are part of Windows TAP program. If not, you can be a part of Windows techbeta program via enrolling to and get the Windows beta bits.

To do a SSTP pilot or lab deployment, all you need is:

1) A machine running Vista SP1 beta or Windows server 2008 RC0 or later – acting as VPN client

2) A machine running Windows server 2008 RC0 or later – acting as VPN server

Please enroll and get your set-up ready.

Here is the SSTP step-by-step guide:

For more questions on SSTP, see

For any queries, feel free to connect with us via our email address as given above

Samir Jain
Lead Program Manager ( **)
RRAS, Windows Enterprise Networking

** Remove the “online” to actually email me 

[This posting is provided “AS IS” with no warranties, and confers no rights.]

Comments (5)

  1. Anonymous says:

    If it’s not back ported to XP clients then MS can’t be serious about it. Most company’s which are the target for a feature like this are upgrading slowly to vista if at all. For this to take off it needs to be put on XP!

  2. Anonymous says:

    In-built Windows VPN client will give you features like NAP based health check, full IPv6 support, networking admin provisioned and customer made VPN client using CMAK.

  3. C Johnson says:

    Just a thought.  I already have OpenVPN, and it already does VPN through an SSL tunnel.

    Better, since it uses a set of open source, open standard tools, I can get support across platforms and even hardware.  I can even get support in router hardware using DDWRT as firmware.

    It’s going to take something huge to get me to move from that.

    Do you have something huge?  

    Microsoft would do better to work with projects like OpenVPN.

  4. thedude says:

    Well, I can tell you, i’ve spent the last 2 weeks trying to make OpenSSL work correctly.  At best, it’s a major hack.  TAP/TUN devices are a hackish solution.  I’d *MUCH* rather see support for this functionality built-in to the OS than force people to dink around with these bolt-ons that have all kinds of issues.

  5. Jesper Ravn says:

    What are the plans to implement the SSTP client in XP?.