I have a 2012 R2 relatively fresh build and I want to add VPN capability to it...simple right?? Apparently not. The server is 2012 R2 and is a domain controller (one of 3) and is running as a virtual machine. I go to add the role for Remote Access and then select the "VPN" option and after about 2 minutes it always errors out saying a pending restart is required. It's neverending, I restart and get the error again. I've tried switching users and still no luck. Is there some trick the Microsoft team is getting a big laugh out of while IT Administrators try to figure out how to add a simple role to a server???