How do I move Certificate Authority from a 2003 DC to a replacement 2008 DC?

Posted on 2008-11-20
Medium Priority
Last Modified: 2012-05-05
We are looking to replace our Existing DC, running Server 2003 R2 STD, with a new server running 2008 STD.

I have found the procedure for moving from one 2003 DC to another (here: http://windowsitpro.com/article/articleid/97565/moving-a-certificate-authority-ca-to-another-dc.html) but will this work when moving to Server 2008?
Question by:hainsworth
LVL 10

Expert Comment

ID: 23002804
Hi Hainsworth,

Provide URL is useful for the W2k3 to W2k3.
FYI In Microsoft technet provided the details about the Backing up and restoring a certification authority. (http://technet.microsoft.com/en-us/library/cc779540.aspx). It will helpful for your migration.

Let me know it works for you :)

Abdul Hakim

Author Comment

ID: 23002816
But can I move directly from 2003 to 2008 or would i have to temporarily upgrade the original server first?
LVL 10

Accepted Solution

abdulwrite earned 2000 total points
ID: 23002817
for more information regarding move CA W2k3 to W2k8 CA
Step by Step details in MS technet:

Abdul Hakim T
Technology Partners: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!


Author Comment

ID: 23002826
Oh ok, sorry i jumped in very quick then... So I'll need to upgrade, thanks.

Expert Comment

ID: 26081459
Does this work if I am migrating from a 32-bit 2003 CA to 2008 R2? (Being that it's 32-bit to x64.)

Thanks for your advice!
LVL 31

Expert Comment

ID: 26115998
You cannot upgrade from 32 to 64 bit - it just isn't allowed and won't work.  My advice is install a new CA on the 64 bit and start reissuing certs from that, when you are done then decom the old CA from AD.

How to decom a CA server properly from AD:

Featured Post

Free Tool: SSL Checker

Scans your site and returns information about your SSL implementation and certificate. Helpful for debugging and validating your SSL configuration.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Background Information Recently I have fixed file server permission issues for one of my client. The client has 1800 users and one Windows Server 2008 R2 domain joined file server with 12 TB of data, 250+ shared folders and the folder structure i…
This article provides a convenient collection of links to Microsoft provided Security Patches for operating systems that have reached their End of Life support cycle. Included operating systems covered by this article are Windows XP,  Windows Server…
This tutorial will give a short introduction and overview of Backup Exec 2012 and how to navigate and perform basic functions. Click on the Backup Exec button in the upper left corner. From here, are global settings for the application such as conne…
This tutorial will walk an individual through locating and launching the BEUtility application to properly change the service account username and\or password in situation where it may be necessary or where the password has been inadvertently change…
Suggested Courses

809 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question