• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 119
  • Last Modified:

CS server removal from AD after CS server physically lost

I have a client with a legacy 2008R2 domain. It originally had a single certificate server. The certificate server remains listed in PKIVIEW but the physical computer is gone and therefore I am unable to follow the removal process found in: http://support2.microsoft.com/kb/889250. How does one effectively get rid of a no longer existing Certificate Services server in order to clean up Active Directory before installing a new one?
0
214-042308
Asked:
214-042308
  • 2
1 Solution
 
Daniel KlineSr. SharePoint DeveloperCommented:
I can't claim credit for this hack, but here is where you can find the solution:
http://retrohack.com/cleaning-up-after-a-failed-2008-certificate-authority/
0
 
214-042308Author Commented:
Ok, I'll give it a try. Thanks for the disclaimer.
0
 
214-042308Author Commented:
Ok, that worked, but like the comments said it's easier if you use the PKIView in step 11 to remove the failed CA from the various AD containers. Still, a good recommendation even if you pulled a third party solution.
0

Featured Post

Problems using Powershell and Active Directory?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now