Re: Help - how do you completly remove Certificate Services?

From: newsgroups@MSWEBS.com
Date: 08/27/02 

From: newsgroups@MSWEBS.com
Date: Mon, 26 Aug 2002 23:25:25 -0400

I don't think we will ever get a stright answer from Microsoft. I have
started a new thread on this with a subject of "CertSrv Question"

On Mon, 26 Aug 2002 16:04:10 -0700, "John D. Gwinner"
<jgwinner@dazsi.com> wrote:

>That's exactly my issue as well. Physically removing the program isn't that
>hard, it's the repercussions.
>
>In my case, this was a server to do certificate development with, but now
>all of the PC's in the domain have requested certificates.
>
>My Exchange 2000 seems to use certificates right and left as well, so we
>need a systematic way to change the domain policy to not require
>certificates.
>
>I wouldn't be unhappy removing the cert server and reinstalling it as a root
>server on a different machine. I know you can't 'change' the name of a cert
>server, in this case I'd want to invalidate all existing certificates and
>have new cert's issued from the new server. Not sure if that's possible.
>
> == John ==
>
><newsgroups@MSWEBS.com> wrote in message
>news:120jmu02f6ua71incnur7hdsjcsiv6du6s@4ax.com...
>> The Add/Remove Windows Components only seems to remove the physical
>> program from the server in which it was installed on. The problem that
>> I'm having is that all the machines in my network still have a trusted
>> root certificate for the certificate service that is no longer there.
>> I have reinstalled Certificate Server several times while testing,
>> which created several keys that where automatically placed in all
>> clients trusted list. I have deleted them from several of the machines
>> after uninstalling Certificate Service, but they always come back
>> after a reboot or over time. I have checked the groups policies for
>> the Domain, but nothing reflects to add these certificates to the
>> clients. How do you remove them from the entire Domain which is
>> running Active Directory, but I installed the Stand-alone CA service.
>>
>> The thing that puzzles me is that they are still valid, but the
>> Certificate Service as be uninstalled from the server that the CRL was
>> located on.
>

Relevant Pages

  • RPC over HTTP, Microsoft solution
    ... Exchange Server 2003 RPC over HTTP Deployment Scenarios ... Place a check in the box next to 'Certificate Services' and click 'Yes' ...
    (microsoft.public.exchange.setup)
  • Re: OWA 2003 w/ Smart Card Authentication.
    ... Exchange 2003 server via ActivSync. ... the IIS certificate. ... Whether or not authentication will succeed is completely dictated by ... Server's SSL certificate must be configured on root of v-server via ...
    (microsoft.public.exchange.connectivity)
  • Re: Configuring LDAP on Entourage 2004 OS X
    ... Microsoft CSS Online Newsgroup Support ... does not work with a self signed SSL certificate OR with the SSL ... configure the System to allow OMA and "Server ActiveSync" access from the ... Configuring Exchange Server 2003 for Client Access. ...
    (microsoft.public.windows.server.sbs)
  • Re: Configuring SBS2003 for OWA and RWW
    ... And make sure certificate will not be ... On the Connection Type page, click Broadband, and then click Next. ... next to Preferred DNS server and next to ... If you are using ISA, please go to ISA management console, and navigate ...
    (microsoft.public.windows.server.sbs)
  • Re: How to setup a Server Certificate with multiple domains?
    ... create an internal DNS record for www.yourdomain.com access. ... Usually running the CEICW will create the certificate needed and there ... should be no reason to have to install Certificate Service to do so. ... the LAN address of you SBS2003 server box. ...
    (microsoft.public.windows.server.sbs)