• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 167
  • Last Modified:

Enterprise Certificate Authority crashed

i have a windows server 2008 Certificate server that crashed and need to know how to introduce an new cert server in the enterprise without causing any problems.  can this be done?
0
johnkesoglou
Asked:
johnkesoglou
  • 2
  • 2
2 Solutions
 
Craig BeckCommented:
I'm assuming this was an Enterprise Root CA??

Do you want clients to be able to use their existing certs?  If so, you'll need to treat this as a DR exercise.
http://blogs.technet.com/b/pki/archive/2010/04/20/disaster-recovery-procedures-for-the-active-directory-certificate-services-adcs.aspx

If you don't mind having to reinstall certs everywhere (basically starting your PKI from scratch) just install a new CA, as Jakob said.
0
 
johnkesoglouAuthor Commented:
thank you guys.  my only concern is when i remove these objects from the AD schema will it create an issue before i stand up another cert server?

thanks
John
0
 
Jakob DigranesSenior ConsultantCommented:
not at all..... When migrating from 32-bit Win2003 CA server to new 64-bit 2008/2012 I always have at least 2 different Enterprise CA servers in the domain. Absolutely no issues
0
 
johnkesoglouAuthor Commented:
Thank you guys; the information was most helpful
0

Featured Post

Receive 1:1 tech help

Solve your biggest tech problems alongside global tech experts with 1:1 help.

  • 2
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now