Hey guys. Our AD infrastructure never had a PKI within it. We are installing LYNC now and I need to setup an enterprise root CA server. But I am unsure of what domain to join it to.
We currently have a root domain with 3 child domains. Example:
Our Exchange servers are in one child domain, say cd2.root.corp and the LYNC server is going to be installed in another child domain cd1.root.corp.
Can I install our CA server in any child domain or does it have to be joined to the root domain, root.corp?