Re: How to install a new Enterprise Root Certificate Authority to replace an old one?

• Previous message: Mariano: "Enterprise Root CA"
• In reply to: Erik: "Re: How to install a new Enterprise Root Certificate Authority to replace an old one?"
• Next in thread: Erik: "Re: How to install a new Enterprise Root Certificate Authority to replace an old one?"
• Reply: Erik: "Re: How to install a new Enterprise Root Certificate Authority to replace an old one?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Fri, 23 Apr 2004 10:04:29 GMT

Hi Erik,

Yes, the new server must have the same name as the outdated server because
the server name information is part of the Authority Information Access
(AIA) and CRL distribution point paths of all previously issued
certificates. In addition, the database and log-file paths must be the same
on both the new and outdated servers.

You can try these steps.

Upgrade Windows 2000 DC to Windows Server 2003
Backup the Certification Authority Keys and Database
Demote the Windows 2003 DC
Install a new Windows 2003 DC using the original name and promote it to a
DC
Restore the Certification Authority Keys and Database

Wish it helps.

Regards,
Bob Qin
Product Support Services
Microsoft Corporation

Get Secure! - www.microsoft.com/security

====================================================
When responding to posts, please "Reply to Group" via your newsreader so
that others may learn and benefit from your issue.
====================================================
This posting is provided "AS IS" with no warranties, and confers no rights.

• Previous message: Mariano: "Enterprise Root CA"
• In reply to: Erik: "Re: How to install a new Enterprise Root Certificate Authority to replace an old one?"
• Next in thread: Erik: "Re: How to install a new Enterprise Root Certificate Authority to replace an old one?"
• Reply: Erik: "Re: How to install a new Enterprise Root Certificate Authority to replace an old one?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages SecurityFocus Microsoft Newsletter #154 ... MICROSOFT VULNERABILITY SUMMARY ... ISS RealSecure Server Sensor SSL Denial Of Service Vulnerabi... ... Roger Wilco Remote Server Side Buffer Overrun Vulnerability ... available for Microsoft Windows operating systems. ... (Focus-Microsoft) SecurityFocus Microsoft Newsletter #49 ... Subject: SecurityFocus Microsoft Newsletter #49 ... Microsoft Windows NNTP Denial of Service Vulnerability ... Microsoft IIS SSI Buffer Overrun Privelege Elevation Vulnerability ... Microsoft ISA Server H.323 Memory Leak Denial of Service... ... (Focus-Microsoft) Questions Relating to Administering Windows 2000 Server ... installed the network client on the target computer. ... Sarah has been attempting to install Windows 2000 ... Server for two days. ... Sarah has checked the cables and hard drives. ... (microsoft.public.cert.exam.mcse) Questions Relating to Administering Windows 2000 Server ... installed the network client on the target computer. ... Sarah has been attempting to install Windows 2000 ... Server for two days. ... Sarah has checked the cables and hard drives. ... (microsoft.public.cert.exam.mcse) pqv¼Ò¹ÚÇÑ ²Þ@mBGRx ... O-009¹Ù¢Ã MS Windows 2000 Datacenter Server -2¸¸¿ø ... Main Application (Borland C++ Builder 6 Enterprise Edition) ... Y-166¢Ã Sex Starved Sluts 1 (Divx) ... (FreeBSD-Security)