Re: Offline CA Root certificate invisble in AD
- From: Brian Komar [MVP] <bkomar@xxxxxxxxxxxxxxxxx>
- Date: Wed, 21 Mar 2007 17:07:53 -0400
In article <A4CFAEF5-D6A2-4934-AABC-D9DB63D5FF66
@microsoft.com>,
BENHAMOUStphane@xxxxxxxxxxxxxxxxxxxxxxxxx says...
Hi,It may just be a case of patience. I just checked a few
I'm implementing a pki to secure our WLAN network. I followed the guidelines
found on the MS Solution "Securing Wireless LANs with Certificate Services".
I installed a Win 2003 SP1 Std Server for Offline CA Root, exported the
certificate and CRL and then imported them in AD through the certutil utility
(certutil -v -f -dsPublish -dc ...)
When I check on a member server if the certificate is published (certutil
-viewstore -enterprise Root), I got nothing. But when I go to the
Configuration, Service, Public Key Services, Certification Authorities, the
CN name of my Root CA certificate is there, with a certificationAuthority
class !
Can someone tell me why the Root CA certificate is not visible but seems to
be installed ? How could I make him visible to verify that everything is fine
?
Thanks in advance.
Stéphane
of my environments , and in all cases , I see the
certificate in both the etnerprise root, and in the
certificate manager.
THe best way to check if the publication is successful
is to use the PKI Health Tool (pkiview.msc). Ensure that
the root certificate is on both the Certification
Authorities and AIA tab.
Also, you cut off the important command <G>. Did you
type:
certutil -v -f -dsPublish <RootCertName.cer> RootCA
Brian
.
- Prev by Date: Re: Certificate Services: Windows 2000
- Next by Date: Re: Logon box in Windows 2000 server
- Previous by thread: Certificate Services: Windows 2000
- Next by thread: Re: Logon box in Windows 2000 server
- Index(es):
Relevant Pages
|
|
