Solved

Key recovery agent certificate invalid Error

Posted on 2016-10-13
4
57 Views
Last Modified: 2016-10-19
I am working with an Aruba vendor to have a dual authentication Clinical Wi-Fi setup for our organization. To my surprise, I'm assuming a 3rd party contractor, setup CA in our Active Directory already. However, what I need it to do is archive keys so that it can work properly with what we're trying to do.
The issue I am having though is that when I right click on my Certification Authority > Properties > Recovery Agents > Archive the key > I get 3 options and all 3 give me an 'Invalid' Status and I'm unsure as to why and how to exactly jump in and fix that since the expiration dates are still good.
If I need to create a new Key Recovery Certificate to get this to work, I'd be open for that too.

Apologize if I'm missing any information, please ask for further details if needed.
0
Comment
Question by:Joe Lowe
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
4 Comments
 
LVL 22

Expert Comment

by:Jakob Digranes
ID: 41843075
the certificates you're trying to archive are Key Recovery of type? valid dates?
0
 

Author Comment

by:Joe Lowe
ID: 41843838
How do I verify to be sure that they are Key Recovery types?  And the dates are valid, expiration date was 3/29/2017.
I have attached the window I am having an issue with.
CAError.docx
0
 

Accepted Solution

by:
Joe Lowe earned 0 total points
ID: 41844434
Looks like I was able to the solve the issue just by creating a new Key Recovery Cert through:
https://www.youtube.com/watch?v=K-6zgcGbZ3U
0
 

Author Closing Comment

by:Joe Lowe
ID: 41849733
This worked for our organization.
0

Featured Post

Free Tool: SSL Checker

Scans your site and returns information about your SSL implementation and certificate. Helpful for debugging and validating your SSL configuration.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

In-place Upgrading Dirsync to Azure AD Connect
Active Directory security has been a hot topic of late, and for good reason. With 90% of the world’s organization using this system to manage access to all parts of their IT infrastructure, knowing how to protect against threats and keep vulnerabil…
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles to another domain controller. Log onto the new domain controller with a user account t…
Attackers love to prey on accounts that have privileges. Reducing privileged accounts and protecting privileged accounts therefore is paramount. Users, groups, and service accounts need to be protected to help protect the entire Active Directory …

728 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question