Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people, just like you, are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
Solved

2012 CA Server in a 2008 r2 AD environment

Posted on 2014-07-24
2
225 Views
Last Modified: 2014-08-05
My collegue was asked to install a 2012 server as a Member server and use it as the Enterprise Root Certificate Authority server on their 2008 R2 AD environment.  Is there any issues and/or problems that you are aware of in this kind of scenario?  Any suggestions/tips on best practice to follow?
0
Comment
Question by:seven45
2 Comments
 
LVL 36

Accepted Solution

by:
Mahesh earned 250 total points
ID: 40219296
We are using it currently without any issues
You will not face any issues as far as I am aware

Just check below URLs
http://kazmierczak.eu/itblog/2012/08/22/the-dos-and-donts-of-pki-microsoft-adcs/

U can download Microsoft IPD to design your PKI
http://www.microsoft.com/en-us/download/details.aspx?id=732
0
 
LVL 21

Assisted Solution

by:Jakob Digranes
Jakob Digranes earned 250 total points
ID: 40223021
a can add to that, no problems. But remember to add license or else you'll get stuck with one--week CRLs

But you should seriously look into a two-tier setup with an offline ROOT and a subordinate issuing server, where the offline root is not domain joined
0

Featured Post

Does Powershell have you tied up in knots?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

This article explains how to install and use the NTBackup utility that comes with Windows Server.
Ransomware is a growing menace to anyone using a computer or mobile device. Here are answers to some common questions about this vicious new form of malware.
Microsoft Active Directory, the widely used IT infrastructure, is known for its high risk of credential theft. The best way to test your Active Directory’s vulnerabilities to pass-the-ticket, pass-the-hash, privilege escalation, and malware attacks …
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …

860 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question