Solved

ull backup of all certs certutil where, not exists

Posted on 2014-01-23
1
500 Views
Last Modified: 2014-02-11
Need to have a full backup of all certs

C:\Users\jazz>certutil -ping
CertUtil: -ping command FAILED: 0x80070002 (WIN32: 2)
CertUtil: The system cannot find the file specified.

W2008R2
0
Comment
Question by:jazzIIIlove
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
1 Comment
 
LVL 30

Accepted Solution

by:
Rich Weissler earned 500 total points
ID: 39804180
I believe the ping verb in certutil requires a destination.
C:\Users\razmus.TEST>certutil -ping localca
Connecting to localca ...
Server "test-LOCALCA-CA" ICertRequest2 interface is alive (78ms)
CertUtil: -ping command completed successfully.

Open in new window


If you have access to the console of the CA server, the you can perform a 'certutil -backup <destinationfolder>' to backup the CA, which will get the certificates.  (It will ask for a password on the backup itself.)

C:\temp\cabackup>certutil -backup c:\temp\cabackup
Enter new password:
Confirm new password:
Backed up keys and certificates for LOCALCA.test.local\test-LOCALCA-CA to c:\tem
p\cabackup\test-LOCALCA-CA.p12.
Full database backup for LOCALCA.test.local\test-LOCALCA-CA.
Backing up Database files: 100%
Backing up Log files: 100%
Truncating Logs: 100%
Backed up database to c:\temp\cabackup.
Database logs successfully truncated.
CertUtil: -backup command completed successfully.

Open in new window

0

Featured Post

NFR key for Veeam Backup for Microsoft Office 365

Veeam is happy to provide a free NFR license (for 1 year, up to 10 users). This license allows for the non‑production use of Veeam Backup for Microsoft Office 365 in your home lab without any feature limitations.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

There are many Password Managers (PM) out there to choose from. PM's can help with your password habits and routines, but they should not be a crutch you rely on too heavily. I also have an article for company/enterprise PM's.
I was prompted to write this article after the recent World-Wide Ransomware outbreak. For years now, System Administrators around the world have used the excuse of "Waiting a Bit" before applying Security Patch Updates. This type of reasoning to me …
This tutorial will walk an individual through configuring a drive on a Windows Server 2008 to perform shadow copies in order to quickly recover deleted files and folders. Click on Start and then select Computer to view the available drives on the se…
This tutorial will walk an individual through the steps necessary to join and promote the first Windows Server 2012 domain controller into an Active Directory environment running on Windows Server 2008. Determine the location of the FSMO roles by lo…

752 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question