kdschool
asked on
Root Server Certificate is expiring should I take any action ?
Windows Server 2008R2: In my certificate interface I see a certificate that says servername-root and its expiring soon. I need to know if I should and how to renew this or does it matter. I have a Symantec SSL certificate but not sure what this certificate does for the server. Does not seem to have anything to do with SSL. If I right click on it there is a renew option but not sure what that does either.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
This is what is says the certificate is used for: All application policies.
CN = SERVER NAME - ROOT
OU = BE-HRO
O = Symantec Corporation
L = Heathrow
S = Florida
C = US
I use Symantec back up exec 2012 and Symantec system recovery 2013. My license are up to date. Should I contact Symantec?
CN = SERVER NAME - ROOT
OU = BE-HRO
O = Symantec Corporation
L = Heathrow
S = Florida
C = US
I use Symantec back up exec 2012 and Symantec system recovery 2013. My license are up to date. Should I contact Symantec?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
The first answer helped me solve this problem by finding out who the certificate was issued by. I contacted Symantec and as the last answer says there is no impact on the products. They confirmed it was a back up exec certificate and that it would have no impact on the server when it expired as long as my license were up to date. Thanks to everyone on this site who are just amazing helping us rookies.
... in fact you can reuse the existing same key for the root server... However, it is not for you if are in the stated use cases and so you need new keyset
This is useful link as well when havign a new keyset and noting this also do avoid having CA and AD in same server, it complicates...and in all changes do verify backup and existing keyset is alright ..http://social.technet.microsoft.com/wiki/contents/articles/2016.root-ca-certificate-renewal.aspx
another - Renewing a certification authority that shares more on various use case for consideration
http://technet.microsoft.com/en-sg/library/cc740209(v=ws.10).aspx