?
Solved

MS Certificate Authority expiring

Posted on 2003-11-21
4
Medium Priority
?
256 Views
Last Modified: 2013-12-04
I have a CA that is expiring in 1 year.  I wish to create user certificates for 30 years, but MS support says that they cannot be created for a period longer than the CA expiration.  I do not want to re-create my certificate authority to do this, since i have a lot of user certs already out there.  I found the registry entries ValidityPeriod & ValidityUnits, and changed them to reflect the 30 years I need, but since they exceed the CA that is installed I would have to re-issue that new CA to get those registry changes.

How do i do this?

--dan
0
Comment
Question by:teknorapex
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
4 Comments
 
LVL 24

Accepted Solution

by:
SunBow earned 1000 total points
ID: 9800947
You have to use/change it at the root authority level. You cannot simply change a reg entry to make certificates work on the net.

You can get a new certificate with the same name, at least my company did. Dunno why. (politics?).  Maybe take a look at MS alternative like Thawte or <ugh> verisign. Maybe Western Union.
0
 

Expert Comment

by:pcssecure
ID: 10887003
You can renew the CA before it expires.  This way, the CA will last longer than its original expiry date.  
0

Featured Post

Put Machine Learning to Work--Protect Your Clients

Machine learning means Smarter Cybersecurity™ Solutions.
As technology continues to advance, managing and analyzing massive data sets just can’t be accomplished by humans alone. It requires huge amounts of memory and storage, as well as the high-speed power of the cloud.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

As I write this article, I am finishing cleanup from the Qakbot virus variant found in the wild on April 18, 2011.  It was a messy beast that had varying levels of infection, speculated as being dependent on how long it resided on the infected syste…
Our Group Policy work started with Small Business Server in 2000. Microsoft gave us an excellent OU and GPO model in subsequent SBS editions that utilized WMI filters, OU linking, and VBS scripts. These are some of experiences plus our spending a lo…
Monitoring a network: how to monitor network services and why? Michael Kulchisky, MCSE, MCSA, MCP, VTSP, VSP, CCSP outlines the philosophy behind service monitoring and why a handshake validation is critical in network monitoring. Software utilized …
Add bar graphs to Access queries using Unicode block characters. Graphs appear on every record in the color you want. Give life to numbers. Hopes this gives you ideas on visualizing your data in new ways ~ Create a calculated field in a query: …
Suggested Courses
Course of the Month10 days, 19 hours left to enroll

770 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question