Domain Rename CA Installed on the Domain Controller

Hi Experts,

I have to do a Domain Rename of a Windows 2003 Domain.
I have the Experiance and i did the before.

Now the Problem is that I have a Windows 2003 Domain Controller on which Stand Alone CA is Installed,
I have to retain the Certificates because its serving the VPN clients.

What is the best and safe procedure to go..???
How can i still retain the Certificates after the Domain Rename(I dont mind going the server down for a day).
I also have a few Windows 2003 member servers too.

Thanks in Advance for the suggessions.

regards
Naren
 
LVL 12
r_naren22atyahooAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

maxinglisCommented:
I dont think your certificates will ever work properly again, since the name of the server will have changed, and its hard-coded into the cert. If you had the foresight to just use the name without the domain in your CA, then your certs should be fine.

you will need to back them up, how-to is listed here:

http://www.microsoft.com/technet/prodtechnol/exchange/guides/Ex2k3DepGuide/c989bc47-e9a4-42e6-9882-229dd601ea7b.mspx?mfr=true

0
r_naren22atyahooAuthor Commented:

I have this link that helps to move the CA to another server.
http://support.microsoft.com/?kbid=298138

I think there should be a work around, COZ there is a section on page 25 in Microsoft Domain Rename Documentation.
They say we can manage to Retain the CA However it should be on the DC, but mine is on DC.

regards
Naren
0
r_naren22atyahooAuthor Commented:
>>>>They say we can manage to Retain the CA However it should NOT be on the DC,but mine is on DC.
                                                                                       -------------
0
10 Tips to Protect Your Business from Ransomware

Did you know that ransomware is the most widespread, destructive malware in the world today? It accounts for 39% of all security breaches, with ransomware gangsters projected to make $11.5B in profits from online extortion by 2019.

r_naren22atyahooAuthor Commented:
Problem Solved.

Using this artical
http://support.microsoft.com/?kbid=298138
Backup the CA Configuration,
Uninstall the CA,
Do the Domain Rename,
Install the CA,
Restore the CA Configuration.

Successfully Tested.

regards
Naren
0
r_naren22atyahooAuthor Commented:
It works for stand alone CA
0
GranModCommented:
Closed, 500 points refunded.
GranMod
The Experts Exchange
Community Support Moderator of all Ages
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Windows Server 2003

From novice to tech pro — start learning today.