Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
A
A
Alex Suvoroff2017-03-21 15:00:17
Cryptography
Alex Suvoroff, 2017-03-21 15:00:17

What is the correct way to remove a subordinate CA from an Enterprise PKI?

good day everyone!
I ran into the need to withdraw two certification servers from the domain (highlighted in red in the figure):
a7aa1488dab44823860c366524270c57.png
I searched the Internet for information, everywhere either the final conclusion of the last center is indicated, or migration, which involves saving the name of the certification authority.
There are a couple of questions:
1. Will it be enough just to remove the AD Certificate Services role?
2. What will happen to clients who have received certificates from these centers: PKI02-,PKI03?
P.S. Certificates are issued for computers from the specified
P.P.S. centers. I did a certificate revocation for some clients, then published a revocation list, the client says that the revoked certificate is valid and therefore there is no need to request a new one

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

0 answer(s)
Similar questions
0
0xC0CAC01A2013-05-24 00:12:54
Similar to bitlocker for Linux? 3Reply
R
Roman Sopov2013-06-19 14:29:05
How do I sign an .msi with a Thawte Code Signing certificate? 5Reply
V
Valery Efremov2013-06-26 12:23:36
L2TP password on ZyXEL Keenetic? 4Reply
S
Sergey2018-06-21 15:53:05
One-time fee when running a smart contract on the main eth network? 2Reply
N
Nikiti42013-07-31 12:40:27
Forgot your key password? 4Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question