Auto Enrollment errors, offline rootca

Hey guys,

Im wondering if there is a way to keep my rootca offline. when i shut it
down, i start getting autoenrollment erroros referring to dcom erros saying
there was no way to comunicate with the rootca. i use that certificate
mainly for 802.1x authentication. so my question, can i issue a certificate
turn off the rootca, and have that stored on another computer without
getting the auto enrollment errors. here's the kicker, the rootca is the
only verision of 2k3enterprise we have. everything else is standard edition,
and there are a number of reasons we keep this server offline. any help is
greatly appreciated.


.

Relevant Pages

  • Re: "unpuiblish" a certutil -dspublish d ca
    ... the SubCA versus RootCA. ... Is there anyway I can remove the "subCA-ness" of my Root CA without ... CA certificate to the Certification Authorities *and* ... When you use -dspublish with SubCA, ...
    (microsoft.public.security)
  • Re: "unpuiblish" a certutil -dspublish d ca
    ... While following Brian Komar's 2003 PKI reference, ... the SubCA versus RootCA. ... CA certificate to the Certification Authorities *and* ... When you use -dspublish with SubCA, ...
    (microsoft.public.security)
  • Re: "unpuiblish" a certutil -dspublish d ca
    ... So now all the workstations in the domain think that the RootCA is both ... CA certificate to the Certification Authorities *and* ... certificate only to the AIA container. ... chains after certificate renewal with a new key, ...
    (microsoft.public.security)
  • Re: Microsoft Certificate Expiry Date
    ... It is probably RootCA -- but it depends on how many CAs you have (you can ... You can't change RootCA certificate. ... > When you refere to CA server is it the same as ROOT CA? ... > If so then Yes our root CA has been set up to expire in two years and I ...
    (microsoft.public.windows.server.general)
Quantcast