Hi all,
We have an Internal CA issuing certificates. However, there are some servers, such as Edge services and a few others that have expired certificates.
How can we manage this from the Internal CA? Is there a console or alerting system to be able to send out alerts of certificates expiring at any point?
Also, should servers that connect directly to the CA auto renew?
Thanks,
Mark
http://technet.microsoft.com/en-us/library/cc773129%28WS.10%29.aspx
But i think you cannot monitor the nearly expired certificates, unless you set reminders in your own Outlook for them. I've always proceed with this way, especially for DMZ servers such Edge or IIS which don't have access directly to the CA.
For auto renew, sure, you could auto renew for internal servers. It wouldn't be a security issue.