Hi everyone, I've been using a VPN to connect to my home network from elsewhere for a few months. It's set up as follows: PPTP Maximum Strength Encryption EAP-MSCHAP-v2 Authentication Now I find out that MSCHAPv2 authentication has been broken and is no longer considered secure (even by Microsoft), so I want to change the protocol I'm using to make it secure. However, I've spent 3 hours now researching this and I cannot for the life of me figure out how to use a better protocol on my Windows Server 2012 home server. I've tried setting up PEAP authentication (still PPTP) a la Microsoft's recommendation document, but it requires a certificate. I've created a self-signed certificate but it seems I can't issue certificates (via this method) without being a member of a domain, so I'm stuck. I can't even get started with L2TP since I can't find the option for it. My question is this: Is there a way to set up a secure VPN server using Windows Server 2012 without a domain? If so, how do I do this? Thanks.