[Webinar] Learn how to a build a cloud-first strategyRegister Now

x
?
Solved

decomissioning a certification Authority

Posted on 2012-09-13
6
Medium Priority
?
309 Views
Last Modified: 2012-10-22
I have a machine that was used as a certification authority.  I wish to decommission at least the CA, but eventually the whole machine.  When I open the CA, the service is stopped.  when I attempt to start the service, I get an error that the certificate is revoked.  (screen shot attached).  I've looked at the CA for the domain, I don't see that.  The certificate I put on there was not revoked (used on several other servers).   I want to remove CA from that machine, so I can at least rename the machine (will make life easier for me in the long run), but I obviously want to do it the right way.  my question is several parts: 1) how do I accomplish this?  Can I just uninstall it?  I don't want to screw up A/D obviously.  

thanks.
0
Comment
Question by:Winstink
  • 4
  • 2
6 Comments
 
LVL 18

Accepted Solution

by:
Sushil Sonawane earned 1600 total points
ID: 38395297
0
 
LVL 2

Author Comment

by:Winstink
ID: 38395339
I've read that article. I  cannot open CA on the server. Says service is stopped and when I attempt to start i, it says "certificate is revoked" (see attached screen shot)
CA-SS.png
0
 
LVL 18

Assisted Solution

by:Sushil Sonawane
Sushil Sonawane earned 1600 total points
ID: 38395506
If you don't want anything from the CA then Start the Step 5: Uninstall Certificate Services from the server then checked
0
 The Evil-ution of Network Security Threats

What are the hacks that forever changed the security industry? To answer that question, we created an exciting new eBook that takes you on a trip through hacking history. It explores the top hacks from the 80s to 2010s, why they mattered, and how the security industry responded.

 
LVL 2

Author Comment

by:Winstink
ID: 38395641
when i get to the part of "remove all Certification Services objects from Active Directory"  when I run certutil, I do not see the name of my server in there.  Does that matter?
0
 
LVL 2

Author Comment

by:Winstink
ID: 38395644
I also did not see the machine listed in enrollment services.
0
 
LVL 2

Author Comment

by:Winstink
ID: 38405528
bumping points.
0

Featured Post

New Tabletop Appliances Blow Competitors Away!

WatchGuard’s new T15, T35 and T55 tabletop UTMs provide the highest-performing security inspection in their class, allowing users at small offices, home offices and distributed enterprises to experience blazing-fast Internet speeds without sacrificing enterprise-grade security.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Imagine a situation that you have installed SSL (http://en.wikipedia.org/wiki/Secure_Sockets_Layer) Certificate on your Cisco ASA (Cisco Adaptive Security Appliance) firewall. Installation of SSL certificate on ASA is an another topic for which you …
#SSL #TLS #Citrix #HTTPS #PKI #Compliance #Certificate #Encryption #StoreFront #Web Interface #Citrix XenApp
Exchange organizations may use the Journaling Agent of the Transport Service to archive messages going through Exchange. However, if the Transport Service is integrated with some email content management application (such as an anti-spam), the admin…
In a question here at Experts Exchange (https://www.experts-exchange.com/questions/29062564/Adobe-acrobat-reader-DC.html), a member asked how to create a signature in Adobe Acrobat Reader DC (the free Reader product, not the paid, full Acrobat produ…

865 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question