Certificate authority and my inherited mess
Posted on 2010-04-04
I inherited a real nightmare at a new customers office. Here is the nightmare.
Windows SBS 2003. Runs great now (had a few problems, they were solved by you guys, thanks). Windows Server 2003. Was running as a member server and then for some dumbass reason they guy made it a domain controller. Uggh. Unfortunately when I tried to demote it, it was running the certificate services and the demotion would not go through.
I looked at the certificate services and it only has 2 active certificates and they both point to the SBS 2003 server. It appears that the only thing they are running or being used for is for self signed certificates that run the Remote services. They dont appear to be using OWA at all and not even using RPC over HTTP.
What is the best way to demote the server to make it a member server again?