Solved

CS server removal from AD after CS server physically lost

Posted on 2014-10-01
3
106 Views
Last Modified: 2014-10-06
I have a client with a legacy 2008R2 domain. It originally had a single certificate server. The certificate server remains listed in PKIVIEW but the physical computer is gone and therefore I am unable to follow the removal process found in: http://support2.microsoft.com/kb/889250. How does one effectively get rid of a no longer existing Certificate Services server in order to clean up Active Directory before installing a new one?
0
Comment
Question by:214-042308
  • 2
3 Comments
 
LVL 5

Accepted Solution

by:
Daniel Kline earned 500 total points
ID: 40356116
I can't claim credit for this hack, but here is where you can find the solution:
http://retrohack.com/cleaning-up-after-a-failed-2008-certificate-authority/
0
 

Author Comment

by:214-042308
ID: 40359875
Ok, I'll give it a try. Thanks for the disclaimer.
0
 

Author Comment

by:214-042308
ID: 40364528
Ok, that worked, but like the comments said it's easier if you use the PKIView in step 11 to remove the failed CA from the various AD containers. Still, a good recommendation even if you pulled a third party solution.
0

Featured Post

What is SQL Server and how does it work?

The purpose of this paper is to provide you background on SQL Server. It’s your self-study guide for learning fundamentals. It includes both the history of SQL and its technical basics. Concepts and definitions will form the solid foundation of your future DBA expertise.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

The Need In an Active Directory enviroment, the PDC emulator provide time synchronization for the domain. This is important since Active Directory uses Kerberos for authentication.  By default, if the time difference between systems is off by more …
Disabling the Directory Sync Service Account in Office 365 will stop directory synchronization from working.
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles from a Windows Server 2008 domain controller to a Windows Server 2012 domain controlle…
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles to another domain controller. Log onto the new domain controller with a user account t…

920 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

14 Experts available now in Live!

Get 1:1 Help Now