I have 2 root DCs in a forest running 2003. I am replacing the secondary one with a 2012 server and then I'll replace the primary 2003 server with a 2012 server. Currently the primary 2003 has a CA but the new 2012 secondary server is getting several Schannel 36886 errors:
No suitable default server credential exists on this system. This will prevent server applications that expect to make use of the system default credentials from accepting SSL connections. An example of such an application is the directory server. Applications that manage their own credentials, such as the internet information server, are not affected by this.
Is there something i need to do for the 2012 to see the certificate on the 2003 primary box or is it not compatible with 2012? What shoudl I do to resolve?