Still celebrating National IT Professionals Day with 3 months of free Premium Membership. Use Code ITDAY17

x
?
Solved

Enterprise Certificate Authority crashed

Posted on 2015-02-18
5
Medium Priority
?
148 Views
Last Modified: 2015-03-03
i have a windows server 2008 Certificate server that crashed and need to know how to introduce an new cert server in the enterprise without causing any problems.  can this be done?
0
Comment
Question by:johnkesoglou
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
5 Comments
 
LVL 22

Accepted Solution

by:
Jakob Digranes earned 1600 total points
ID: 40618352
0
 
LVL 47

Assisted Solution

by:Craig Beck
Craig Beck earned 400 total points
ID: 40618436
I'm assuming this was an Enterprise Root CA??

Do you want clients to be able to use their existing certs?  If so, you'll need to treat this as a DR exercise.
http://blogs.technet.com/b/pki/archive/2010/04/20/disaster-recovery-procedures-for-the-active-directory-certificate-services-adcs.aspx

If you don't mind having to reinstall certs everywhere (basically starting your PKI from scratch) just install a new CA, as Jakob said.
0
 

Author Comment

by:johnkesoglou
ID: 40621768
thank you guys.  my only concern is when i remove these objects from the AD schema will it create an issue before i stand up another cert server?

thanks
John
0
 
LVL 22

Expert Comment

by:Jakob Digranes
ID: 40623272
not at all..... When migrating from 32-bit Win2003 CA server to new 64-bit 2008/2012 I always have at least 2 different Enterprise CA servers in the domain. Absolutely no issues
0
 

Author Closing Comment

by:johnkesoglou
ID: 40642963
Thank you guys; the information was most helpful
0

Featured Post

Free Tool: Site Down Detector

Helpful to verify reports of your own downtime, or to double check a downed website you are trying to access.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

I had a question today where the user wanted to know how to delete an SSL Certificate, so I thought that I would quickly add this How to! Article for your reference. WHY WOULD YOU WANT TO DELETE A CERTIFICATE? 1. If an incorrect certificate was …
New Windows 7 Installations take days for Windows-Updates to show up and install. This can easily be fixed. I have finally decided to write an article because this seems to get asked several times a day lately. This Article and the Links apply to…
This tutorial will walk an individual through the steps necessary to enable the VMware\Hyper-V licensed feature of Backup Exec 2012. In addition, how to add a VMware server and configure a backup job. The first step is to acquire the necessary licen…
This tutorial will show how to configure a single USB drive with a separate folder for each day of the week. This will allow each of the backups to be kept separate preventing the previous day’s backup from being overwritten. The USB drive must be s…

705 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question