Still celebrating National IT Professionals Day with 3 months of free Premium Membership. Use Code ITDAY17

x
?
Solved

Removing failed Certificate Authority from Active Directory

Posted on 2013-02-01
1
Medium Priority
?
4,101 Views
Last Modified: 2013-02-15
Hi,

I have been having some problems with an old CA on our domain that I believe is conflicting with a new one.
I was unaware that an old one had existed and that server no longer exists (I wrote failed in the title to get more hits, although it is effectively the same thing). I have then installed a new Root enterprise CA and sub CA in the same domain without first removing the old one.

What is the best course of action to take? I understand that I may have to manually remove files but have been able to find a good guide. Just ones that for for removing CAs that are still running.

At the minute I am able to see both CRLs and certificates in the domain but the new CRL is not being noticed.

I am using windows server 2008r2

I hope someone can help me a again.

Josh
0
Comment
Question by:Joshwright100
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
1 Comment
 
LVL 24

Accepted Solution

by:
Sandeshdubey earned 1500 total points
ID: 38845584
Have a look at below link how to remove failed server.You need to run PKIView.msc to remove the remove the obsolete certificate authority server.http://social.technet.microsoft.com/Forums/en/winserversecurity/thread/cb86e4a0-3164-42e4-8689-a89f9719dadd
0

Featured Post

Free Tool: Site Down Detector

Helpful to verify reports of your own downtime, or to double check a downed website you are trying to access.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This process allows computer passwords to be managed and secured without using LAPS. This is an improvement on an existing process, enhanced to store password encrypted, instead of clear-text files within SQL
A bad practice commonly found during an account life cycle is to set its password to an initial, insecure password. The Password Reset Tool was developed to make the password reset process easier and more secure.
This tutorial will walk an individual through the steps necessary to join and promote the first Windows Server 2012 domain controller into an Active Directory environment running on Windows Server 2008. Determine the location of the FSMO roles by lo…
This video shows how to use Hyena, from SystemTools Software, to update 100 user accounts from an external text file. View in 1080p for best video quality.
Suggested Courses

660 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question