Solved

Certificates & Domain Controllers

Posted on 2004-08-06
1
238 Views
Last Modified: 2013-12-04
I'm currently trying to demote a DC that is running Certificate Services.

The CA has automatically issued certificates to all of our other domain controllers here at our primary office and at our remote sites, each of which have a DC.  The uses of the certs are listed as "Proves your identity to a remote computer" and "Ensures the identity of a remote computer."  In removing this CA from our network (and I will subsequently be recreating it on another DC), what effect would this have on those our domain (file replication, authentication, etc.)?

Additionally, what would I need to do to mitigate those potentially bad consequences?

The environment is a Windows 2000 Domain in Mixed Mode with an Enterprise CA.  Clients all W2k or XP.

Thanks!
0
Comment
Question by:titan6400
1 Comment
 
LVL 7

Accepted Solution

by:
msice earned 500 total points
ID: 11756000
Is the DC an Enterprise CA or a Enterprise Subordinate CA? If it is an Enterprise CA you should be able to save the certificates and reinstall on another server but you will then need to update the other subordinates to look at the new Enterprise CA as the trusted source of the new certs. You can have more than one Enterprise CA in a domain so you might want to add the new one before removing the old one, but I would do all of this in a test environment first if I were you.
This doc might help you:
http://www.microsoft.com/technet/prodtechnol/windows2000serv/howto/casetup.mspx 
0

Featured Post

Gigs: Get Your Project Delivered by an Expert

Select from freelancers specializing in everything from database administration to programming, who have proven themselves as experts in their field. Hire the best, collaborate easily, pay securely and get projects done right.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Host Profile issue on Esxi 5.5 U3a 6 545
Low-cost /freeware IOC tools 4 62
Trident and Apple iOS upgrade 2 91
Windows Share permissons vs NTFS permissions 8 64
Recently, a new law in my state forced us to get a top-to-bottom analysis of all of our contract client's networks. While we have documentation, it was spotty at best for some - and in any event it needed to be checked against reality. That was m…
Many of us in IT utilize a combination of roaming profiles and folder redirection to ensure user information carries over from one workstation to another; in my environment, it was to enable virtualization without needing a separate desktop for each…
This video shows how to use Hyena, from SystemTools Software, to bulk import 100 user accounts from an external text file. View in 1080p for best video quality.
Nobody understands Phishing better than an anti-spam company. That’s why we are providing Phishing Awareness Training to our customers. According to a report by Verizon, only 3% of targeted users report malicious emails to management. With compan…

776 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question