troubleshooting Question

AD Enterprise CA certificate expiring and unable to renew

Avatar of Alexander Insley
Alexander Insley asked on
* Public Key Infrastructure (PKI)* certificate servicesActive DirectorySecurity
31 Comments1 Solution129 ViewsLast Modified:
We have an AD environment that a previous tech set up with PKI. the enterprise CA cert is going to expire soon and when trying to renew it we get an error that looks something like this:

The certificate template renewal period is longer than the certificate validity period. The template should be reconfigured or the CA certificate renewed. 

All attempts to locate the root CA, which was taken offline, have been unsuccessful so we have a couple of main questions:

1) what happens when the cert expires and we haven't addressed this?
2) what steps can be taken to deal with this in the event we can't find the root CA?

Thanks in advance!
Join our community to see this answer!
Unlock 1 Answer and 31 Comments.
Start Free Trial
Learn from the best

Network and collaborate with thousands of CTOs, CISOs, and IT Pros rooting for you and your success.

Andrew Hancock - VMware vExpert
See if this solution works for you by signing up for a 7 day free trial.
Unlock 1 Answer and 31 Comments.
Try for 7 days

”The time we save is the biggest benefit of E-E to our team. What could take multiple guys 2 hours or more each to find is accessed in around 15 minutes on Experts Exchange.

-Mike Kapnisakis, Warner Bros