Certificates & Domain Controllers
Posted on 2004-08-06
I'm currently trying to demote a DC that is running Certificate Services.
The CA has automatically issued certificates to all of our other domain controllers here at our primary office and at our remote sites, each of which have a DC. The uses of the certs are listed as "Proves your identity to a remote computer" and "Ensures the identity of a remote computer." In removing this CA from our network (and I will subsequently be recreating it on another DC), what effect would this have on those our domain (file replication, authentication, etc.)?
Additionally, what would I need to do to mitigate those potentially bad consequences?
The environment is a Windows 2000 Domain in Mixed Mode with an Enterprise CA. Clients all W2k or XP.