Demote first DC in a Windows 2003 domain. What happens to the certs?
- From: "Christian" <nospam@xxxxxxxxx>
- Date: Tue, 04 Mar 2008 03:43:10 GMT
(It was recommend that I post this questions to this group. It was
originally posted in the AD group.)
We have three DC's, all running Windows Server 2003 w/SP2. DC1 is unstable,
and needs to be demoted before there is a serious hardware failure. DC2 and
DC3 have been brought online, and all of the FSMO roles have been moved to
them. The one remaining issue is that DC1 issued the Domain Controller
certs to DC2 and DC3. No other certs in our environment where created by
DC1, just the Domain Controller certs for DC2 and DC3. What needs to be
done in order to allow the demotion of DC1 out of AD without affecting the
certs? This server will be salvaged after the demotion.
Thank you,
-Christian
.
- Prev by Date: Re: HELP for Vista on Server 2003 Enterprise
- Next by Date: Virus in C:\WINDOWS\SoftwareDistribution\DataStore\Logs\tmp.edb
- Previous by thread: HELP for Vista on Server 2003 Enterprise
- Next by thread: Virus in C:\WINDOWS\SoftwareDistribution\DataStore\Logs\tmp.edb
- Index(es):
Relevant Pages
|
