<div>
<div class="content wysiwyg-content">
A few months back I removed a CA from our domain. I followed the documented procedure to do so safely. I am now getting this message in the Domain Controller logs as the cert cannot auto-renew because the CA is gone. <br />
<br />
Certificate for local system with Thumbprint xx xx xx xx ...etc is about to expire or already expired.<br />
<br />
When looking in the certificates MMC snapin I see Intended purposes are Client Authentication, Server Authentication.<br />
<br />
My question is this: I've seen other posts that say this does not need to be renewed if there are no services using it. - namely this one: <a href="https://www.experts-exchange.com/questions/27846670/Certificate-for-local-system-expired-Event-ID-64.html" rel="ugc">https://www.experts-exchange.com/questions/27846670/Certificate-for-local-system-expired-Event-ID-64.html</a>&nbsp;-Is that true? If so, how do I search to see which services may be using this cert?
</div>
</div>


A few months back I removed a CA from our domain. I followed the documented procedure to do so safely. I am now getting this message in the Domain Controller logs as the cert cannot auto-renew because the CA is gone. 

Certificate for local system with Thumbprint xx xx xx xx ...etc is about to expire or already expired.

When looking in the certificates MMC snapin I see Intended purposes are Client Authentication, Server Authentication.

My question is this: I've seen other posts that say this does not need to be renewed if there are no services using it. - namely this one: http://www.experts-exchange.com/OS/Microsoft_Operating_Systems/Q_27846670.html -Is that true? If so, how do I search to see which services may be using this cert?

CertificateServicesClient-AutoEnrollment ID 64

The Microsoft Legacy Operating System topic includes legacy versions of Microsoft operating systems prior to Windows 2000: All versions of MS-DOS and other versions developed for specific manufacturers and Windows 3/3.1, Windows 95 and Windows 98, plus any other Windows-related versions, and Windows Mobile.

Microsoft Legacy OS

Windows Server 2008 and Windows Server 2008 R2, based on the Microsoft Vista codebase, is the last 32-bit server operating system released by Microsoft. It has a number of versions, including including Foundation, Standard, Enterprise, Datacenter, Web, HPC Server, Itanium and Storage; new features included server core installation and Hyper-V.

Windows Server 2008

HTTPS is a protocol for secure communication over a computer network which is widely used on the Internet. HTTPS consists of communication over Hypertext Transfer Protocol (HTTP) within a connection encrypted by Transport Layer Security (TLS) or its predecessor, Secure Sockets Layer (SSL). The main motivation for HTTPS is authentication of the visited website and to protect the privacy and integrity of the exchanged data. HTTPS is widely used for protecting page authenticity on all types of websites, securing accounts and keeping user communications, identity and web browsing private.