Solved

MS Certificate Authority expiring

Posted on 2003-11-21
4
255 Views
Last Modified: 2013-12-04
I have a CA that is expiring in 1 year.  I wish to create user certificates for 30 years, but MS support says that they cannot be created for a period longer than the CA expiration.  I do not want to re-create my certificate authority to do this, since i have a lot of user certs already out there.  I found the registry entries ValidityPeriod & ValidityUnits, and changed them to reflect the 30 years I need, but since they exceed the CA that is installed I would have to re-issue that new CA to get those registry changes.

How do i do this?

--dan
0
Comment
Question by:teknorapex
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
4 Comments
 
LVL 24

Accepted Solution

by:
SunBow earned 250 total points
ID: 9800947
You have to use/change it at the root authority level. You cannot simply change a reg entry to make certificates work on the net.

You can get a new certificate with the same name, at least my company did. Dunno why. (politics?).  Maybe take a look at MS alternative like Thawte or <ugh> verisign. Maybe Western Union.
0
 

Expert Comment

by:pcssecure
ID: 10887003
You can renew the CA before it expires.  This way, the CA will last longer than its original expiry date.  
0

Featured Post

[Webinar] How Hackers Steal Your Credentials

Do You Know How Hackers Steal Your Credentials? Join us and Skyport Systems to learn how hackers steal your credentials and why Active Directory must be secure to stop them. Thursday, July 13, 2017 10:00 A.M. PDT

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Recently, a new law in my state forced us to get a top-to-bottom analysis of all of our contract client's networks. While we have documentation, it was spotty at best for some - and in any event it needed to be checked against reality. That was m…
Recently, I read that Microsoft has analysed statistics for their security intelligence report. It revealed: still, the clear majority of windows users do their daily work as administrator. An administrative account is a burden, security-wise. My ar…
Monitoring a network: why having a policy is the best policy? Michael Kulchisky, MCSE, MCSA, MCP, VTSP, VSP, CCSP outlines the enormous benefits of having a policy-based approach when monitoring medium and large networks. Software utilized in this v…
Do you want to know how to make a graph with Microsoft Access? First, create a query with the data for the chart. Then make a blank form and add a chart control. This video also shows how to change what data is displayed on the graph as well as form…

695 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question