Re: Rendom and certificate authority on DC
- From: "LSR" <nospam@xxxxxxxxxx>
- Date: Tue, 5 Jun 2007 15:31:06 +0100
Jorge Silva wrote:
Hi
There is much more than that check:
"CA Requirements" in
http://technet2.microsoft.com/windowsserver/en/library/4d0c3b6e-e6f5-4ab3-9d81-106ae3a715491033.mspx?mfr=true
Jorge Silva
MCSE, MVP Directory Services
"LSR" <nospam@xxxxxxxxxx> wrote in message
news:5cl55cF2vcm28U1@xxxxxxxxxxxxxxxxxxxxx
We have a simple Windows Server 2003 domain, at 2003 functional
level, with two DCs.There are some other 2003 member servers and XP
workstations. We want to rename the domain as the company is
rebranding. Unfortunately one of the DCs is also our Certificate
Authority, so (I
think!) that means the rendom process won't work.
Could I just remove the domain controller role from the CA server,
rename the domain, then promote it back?
(I know it's not ideal to have a DC as a CA ...)
--
LSR
Yes I've seen that and the docs at fwlink 5585. All it really says that is
relevent is:
====
Management of enterprise certificates can continue during a domain rename
procedure when the following requirements are in effect before domain
rename:
. The CAs are not installed on domain controllers.
====
- hence my question. We only use certificates internally for IIS (SourceSafe
and WSUS authentication) so I can reissue them later if necessary.
--
LSR
.
- Follow-Ups:
- Re: Rendom and certificate authority on DC
- From: Ryan Hanisco
- Re: Rendom and certificate authority on DC
- From: Jorge Silva
- Re: Rendom and certificate authority on DC
- References:
- Rendom and certificate authority on DC
- From: LSR
- Re: Rendom and certificate authority on DC
- From: Jorge Silva
- Rendom and certificate authority on DC
- Prev by Date: Re: Group to manage accounts of account operators
- Next by Date: Re: Group Policy not running across domain.
- Previous by thread: Re: Rendom and certificate authority on DC
- Next by thread: Re: Rendom and certificate authority on DC
- Index(es):
Relevant Pages
|
