Re: Expired Certs (This MUST be basic question)

Mr. PKI,

I already called support and tech did so many things. But the only solution
on my 2003 standard CA is to renew the subordinate and revoke all user/server
certificates and recreate each one of them. Very painfull. Is this
automatic on Enterprise or the same process? I haven't finished your book
reading about it.

Anyways, I've check my new signed email, it's fine and ok. But my new owa
cert with the same name as the url can't be opened on the browser using IE7.
I gues I have to call another support for exchange/OWA. Internally I can
open it, only externally. Or maybe because of ISA 2004. OWA was working
fine before this renewal.

Can you please give me a clue what's happening? Maybe because I haven't
restarted the server although I restarted all the exchange services.

Thanks,
Ricky


"Brian Komar" wrote:

I am sorry, I really have no idea what you are asking
Can you please re-ask
Brian

"RickyVene" <RickyVene@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:C3722E25-D87D-45AA-A9BD-A9967B64CF5B@xxxxxxxxxxxxxxxx
There's no renewal on 2003 Stanadard, is it only for Enterprise.

In standard you need to delete and create new certificate when the cert
expired.

Please clarify.

Thanks,
Ricky

"Brian Komar" wrote:

On Mon, 25 Jun 2007 18:15:04 -0700, cLOWN gOD wrote:

Sorry I'm a newbie, I guess I should know this, but a few days ago I
noticed
that the certificates were about to expire in a couple of days (on
6/17/2007)
on my Cert Server, and started reading frantically through a Microsoft
PKI
Certificate book.

I was (and still am unable to find ANYTHING regarding how to replace
the
expired certificates, although I gather from what I read, that there is
no
way to renew or edit them)? The expired certificates are in the
“Trusted Root
Certificate” /Certificates folder.



Interestingly, the “_NMSTR/Certificates” folder appears to contain
certificates (named a little differently) that have a much longer
expiration
period (valid till 12/31/2039). This is on a sealed test network so
there is
no real “critcal data” to protect, although I do kind of need to get it
running for testing. Thanks!

Just run the IIS certificate wizard again. There is an option to renew
the
certificate. This was really basic, so not included in the book. (I may
add
it next time).
Brian



.

Relevant Pages

  • Re: Can you decrypt this?
    ... asian solo. ... I was obscuring to renew you some of my delicious ... certificates. ...
    (sci.crypt)
  • Renewal root certificate authority
    ... If I renew the root certificate authority, ... of the user certificates. ... Thank you for contacting the TechNet Online Concierge, Nicolas. ...
    (microsoft.public.security)
  • Re: Root CA expiry
    ... Even after you renew the CA, its old certificate is still valid till its ... > figured out that the root CA certificate is also due to expire. ... > If I renew the root CA, will this automatically make the old certificates ...
    (microsoft.public.windows.server.security)
  • Re: Expired Certs (This MUST be basic question)
    ... You can renew certificates on any Skew of Windows Server 2003, as long as you have a valid certificate. ... >>> expired certificates, although I gather from what I read, that there ...
    (microsoft.public.security)
  • Re: Automatically Renewing User Certificates from Inhouse CA?
    ... There is no way to automatically renew certificates in Windows 2000. ... > the CA webpage, and download a new user cert all over again, deleting ...
    (microsoft.public.win2000.security)