Tim Lewis
asked on
upgrading Server 2003 to Server 2008 R2
We are switching our servers to 2008 R2 and I need to move the certificates from a 2003 32-bit server to a 2008 R2 64-bit server. I am actually building a new 2008 R2 DC and I was planning on moving the certs to that and decommissioning the 2003 DC. What is the best way to go about doing this?
Thanks,
Jon
Thanks,
Jon
Hi there the best way to do this would be as follows:
build your 2008 R2 dc
update the AD schema as required
install Certificate Services on the 2008 R2 DC
export all of the relevant certificates from the Windows 2003 server ensuring you export the 'Private Key' with them
Import these certificates into the new Windows 2008 R2 DC's CA store
Uninstall the CA from the Windows 2003 DC
Backup any important files on the Windows 2003 DC
DCPROMO the Windows 2003 DC to remove it from the domain as a DC
Remove the old Windows 2003 DC from the domain
Power down the old Windows 2003 DC
This should do the job for you then!
build your 2008 R2 dc
update the AD schema as required
install Certificate Services on the 2008 R2 DC
export all of the relevant certificates from the Windows 2003 server ensuring you export the 'Private Key' with them
Import these certificates into the new Windows 2008 R2 DC's CA store
Uninstall the CA from the Windows 2003 DC
Backup any important files on the Windows 2003 DC
DCPROMO the Windows 2003 DC to remove it from the domain as a DC
Remove the old Windows 2003 DC from the domain
Power down the old Windows 2003 DC
This should do the job for you then!
ASKER
We moved the CA but now it is not handing out certificates. Please help.
Thanks,
Jon
Thanks,
Jon
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
found answer
http://social.technet.microsoft.com/Forums/en-US/winserverMigration/thread/8d1bc197-50d3-4be5-8e1e-56876f831cf5
Regards,
Krzysztof