Im transistioning over to a network admin role in my company, and have been asked to increase security on our existing Microsoft based VPN that currently is using a PPTP with certificate based VPN. We would like to change to a L2TP/IP sec VPN based on everything we've read about that its better security. From what I've been reading, this doesnt seem to be an easy task and Im a little confused. My questions is, does anyone have a step by step procedure that either entails converting an existing Microsoft VPN server to L2TP/IP Sec or starting from scratch on a new server? In our current environment, we have a RAS server, which contains the internal/external IP address to connect into and a CA(certificate authority) server that issues/manages the certificates.
If there isnt a step by step, Im hoping for a little guidance on whether this task can be accomplished by converting the existing VPN method or starting from scratch in a live environment.