Solved

SBS Small Business Server Self Signed Certificate Renewal Period

Posted on 2014-11-30
3
331 Views
Last Modified: 2014-12-05
Hi All,

I have noticed a change in behaviour for SBS Self Signed Certificates recently, specifically relating to the renewal period.

From memory, they used to renew for two years, however three recent renewals done on our client SBS servers have only renewed for slightly over two months. This has happened on both SBS 2008 and SBS 2011 servers, fully patched and updated to date.

Obviously having to remember to renew client server certificates every few months will become a hassle!

Has anyone else seen this and/or know why the renewal period has changed?

Thanks & Seasons Greetings To All from Melbourne, Australia!
0
Comment
Question by:lexrx
  • 2
3 Comments
 
LVL 56

Accepted Solution

by:
Cliff Galiher earned 500 total points
ID: 40473000
SBS sets up a CA at the time it is installed. Then the "self signed" certificate is issued as a leaf when the wizard is run. While the leaf is issued for two years, the root (created when the OS is first installed) is a bit longer so it doesn't have to be renewed as often and so that a new cert doesn't need to be installed on clients when the leaf is renewed.. Based on what you are describing, my suspicion is that the root is about to expire, which would make the window between leaf renewal and root expiration only a couple months. It isn't something you'll need to keep doing every few months though. Once renewed, the root won't expire again for a few years (much like the leaf) so you'll be back to normal.
0
 

Author Comment

by:lexrx
ID: 40484193
Hi Cliff, thanks for the explanation. Is there command or GUI available to show the expiration status of the root?

Thanks and regards, Brad.
0
 

Author Closing Comment

by:lexrx
ID: 40484194
Answered on point and totally resolves my query.
0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Cannot connect to configuration database - SBS 2011 company intranet 14 55
SBS 2008 unable to backup since migration 1 60
Funa@india.com 6 426
SBS 2003 RWW Login 3 20
In the event you manage a Small Business Server 2003, and you are audited for PCI compliance, there are several changes you must make in order to pass the audit. I can take no credit for discovering any of these fixes or workarounds, but there is no…
Written by Glen Knight (demazter) as part of a series of how-to articles. Introduction One of the biggest consumers of disk space with Small Business Server 2008(SBS) is Windows Server Update Services, more affectionately known as WSUS. For t…
Along with being a a promotional video for my three-day Annielytics Dashboard Seminor, this Micro Tutorial is an intro to Google Analytics API data.
Hi friends,  in this video  I'll show you how new windows 10 user can learn the using of windows 10. Thank you.

867 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

12 Experts available now in Live!

Get 1:1 Help Now