I recently read an answer to a question regarding issues when changing the Domain Administrators password. The answer contained the following:
"If you are using Certificates and the Administrator uses these then make sure you change the password from the CTRL-ALT-DEL dialog or you may lose the link to the certificate and thus access to anything controlled by that certificate (like encrypted files)."
This left me with this question:
Are certificates managed as a domain entity and if not what happens to certificates on other Domain Controllers once you change the Domain Administrators password from another Domain Controller as described above?