Solved

MS Certificate Authority expiring

Posted on 2003-11-21
4
252 Views
Last Modified: 2013-12-04
I have a CA that is expiring in 1 year.  I wish to create user certificates for 30 years, but MS support says that they cannot be created for a period longer than the CA expiration.  I do not want to re-create my certificate authority to do this, since i have a lot of user certs already out there.  I found the registry entries ValidityPeriod & ValidityUnits, and changed them to reflect the 30 years I need, but since they exceed the CA that is installed I would have to re-issue that new CA to get those registry changes.

How do i do this?

--dan
0
Comment
Question by:teknorapex
4 Comments
 
LVL 24

Accepted Solution

by:
SunBow earned 250 total points
ID: 9800947
You have to use/change it at the root authority level. You cannot simply change a reg entry to make certificates work on the net.

You can get a new certificate with the same name, at least my company did. Dunno why. (politics?).  Maybe take a look at MS alternative like Thawte or <ugh> verisign. Maybe Western Union.
0
 

Expert Comment

by:pcssecure
ID: 10887003
You can renew the CA before it expires.  This way, the CA will last longer than its original expiry date.  
0

Featured Post

Complete VMware vSphere® ESX(i) & Hyper-V Backup

Capture your entire system, including the host, with patented disk imaging integrated with VMware VADP / Microsoft VSS and RCT. RTOs is as low as 15 seconds with Acronis Active Restore™. You can enjoy unlimited P2V/V2V migrations from any source (even from a different hypervisor)

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

The term "Bad USB" is a buzz word that is usually used when talking about attacks on computer systems that involve USB devices. In this article, I will show what possibilities modern windows systems (win8.x and win10) offer to fight these attacks wi…
Container Orchestration platforms empower organizations to scale their apps at an exceptional rate. This is the reason numerous innovation-driven companies are moving apps to an appropriated datacenter wide platform that empowers them to scale at a …
This video shows how to quickly and easily add an email signature for all users on Exchange 2016. The resulting signature is applied on a server level by Exchange Online. The email signature template has been downloaded from: www.mail-signatures…
Established in 1997, Technology Architects has become one of the most reputable technology solutions companies in the country. TA have been providing businesses with cost effective state-of-the-art solutions and unparalleled service that is designed…

770 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question