HELP!!!  I have some DC's and member servers whose certificate has expired!

Posted on 2012-08-27
Last Modified: 2012-09-18
Hi, I have some servers (DC's & member servers, which are all Server 2008 R2 - Standard or Enterprise) that their certificates have expired within the CA's Issued Certificates area.

I am unsure what ill-effects will be caused by this and how do I fix it?

I have done some Google searches, but I feel uneasy about this at the moment, so I need some more guidance on this topic.

When I try to renew the certificate for the member server, I receive an error saying it is invalid and I receive EVent App Log errors, ID: 22 & 16, reporting required certificate is not within its validity period when verifying against the current system clock or timestamp in the signed file.

Can anyone guide me with step-by-steps, links, etc?

Thanks in advance.
Question by:rsnellman
    LVL 4

    Accepted Solution

    First of all, you need to find out which Server, if any is running certificate services. Best practices states that you should have a local server with Certificate Services Role installed as a Root Certificate Server on your LAN. It may be on your DC, a stand alone server etc. You can find out who issued the certificate by going to the mmc snapin-
    Run certmgr.msc on your servers-now search through the list and find a servers cert-under the General Tab it will tell you what server issued the Cert. Once you find out where the Trusted Root Certificate is you can go to that server and follow the following step by step-

    Author Comment

    OK, thanks for the link, but it doesn't mention anything about renewing a expired certificate.

    Featured Post

    Why You Should Analyze Threat Actor TTPs

    After years of analyzing threat actor behavior, it’s become clear that at any given time there are specific tactics, techniques, and procedures (TTPs) that are particularly prevalent. By analyzing and understanding these TTPs, you can dramatically enhance your security program.

    Join & Write a Comment

    As a financial services provider, your business is impacted by two of the strictest federal regulations on record: the Sarbanes-Oxley Act and the Gramm-Leach-Bliley Act. Correctly implementing faxing into your organization to provide secure, real-ti…
    Don’t let your business fall victim to the coming apocalypse – use our Survival Guide for the Fax Apocalypse to identify the risks and signs of zombie fax activities at your business.
    This tutorial will show how to push an installation of Backup Exec to an additional server in both 2012 and 2014 versions of the software. Click on the Backup Exec button in the upper left corner. From here, select Installation and Licensing, then I…
    This tutorial will walk an individual through configuring a drive on a Windows Server 2008 to perform shadow copies in order to quickly recover deleted files and folders. Click on Start and then select Computer to view the available drives on the se…

    731 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    16 Experts available now in Live!

    Get 1:1 Help Now