Solved

CS server removal from AD after CS server physically lost

Posted on 2014-10-01
3
104 Views
Last Modified: 2014-10-06
I have a client with a legacy 2008R2 domain. It originally had a single certificate server. The certificate server remains listed in PKIVIEW but the physical computer is gone and therefore I am unable to follow the removal process found in: http://support2.microsoft.com/kb/889250. How does one effectively get rid of a no longer existing Certificate Services server in order to clean up Active Directory before installing a new one?
0
Comment
Question by:214-042308
  • 2
3 Comments
 
LVL 5

Accepted Solution

by:
Daniel Kline earned 500 total points
Comment Utility
I can't claim credit for this hack, but here is where you can find the solution:
http://retrohack.com/cleaning-up-after-a-failed-2008-certificate-authority/
0
 

Author Comment

by:214-042308
Comment Utility
Ok, I'll give it a try. Thanks for the disclaimer.
0
 

Author Comment

by:214-042308
Comment Utility
Ok, that worked, but like the comments said it's easier if you use the PKIView in step 11 to remove the failed CA from the various AD containers. Still, a good recommendation even if you pulled a third party solution.
0

Featured Post

Do You Know the 4 Main Threat Actor Types?

Do you know the main threat actor types? Most attackers fall into one of four categories, each with their own favored tactics, techniques, and procedures.

Join & Write a Comment

This article offers some helpful and general tips for safe browsing and online shopping. It offers simple and manageable procedures that help to ensure the safety of one's personal information and the security of any devices.
Disabling the Directory Sync Service Account in Office 365 will stop directory synchronization from working.
This tutorial will walk an individual through the steps necessary to join and promote the first Windows Server 2012 domain controller into an Active Directory environment running on Windows Server 2008. Determine the location of the FSMO roles by lo…
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles from a Windows Server 2008 domain controller to a Windows Server 2012 domain controlle…

772 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

10 Experts available now in Live!

Get 1:1 Help Now