• Home
  • About us
  • Contact
  • Skip to primary navigation
  • Skip to main content
  • Skip to primary sidebar

Welcome to www.DoitFixit.com

www.doitfixit.com

  • Microsoft
  • Fortinet
  • Symantec
  • Office 365
  • Azure
  • Others
  • Show Search
Hide Search

Move Certificate Authority to another Server

February 4, 2012 By Damitha Anuradha Leave a Comment

Below article helps to you move CA to another server.

In the Certification Authority snap-in, right-click the CA name, click All Tasks, and then click Back up CA to start the Certification Authority Backup Wizard.

Select the Private key and CA certificate and Certificate database and certificate database log check boxes. Specify an empty folder or storage media as the backup location.

Type a password for the CA backup file.

Click Finish.

Open Regedit and Locate and right-click the configuration registry subkey:

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\CertSvc\Configuration

Click Export. Save the registry file in the CA backup folder that you used for the Certification Authority Backup Wizard.

Now you should have below all files.

Uninstall the CA from the old server.

Copy the above backup folder to same location in the new server.

Add “Active Directory Certificate Services”

On the Set Up Private Key page, click Use existing private key, click Select a certificate and use its associated private key, and then click Next.

Click Import…

Open the Services snap-in to stop the Active Directory Certificate Services (AD CS) service.

Locate the registry file that you saved in the backup procedure, and then double-click it to import the registry settings.

Open the Certification Authority snap-in, right-click the CA name, click All Tasks, and then click Restore CA to open the Certification Authority Restore Wizard.

Locate the backup folder location.

Click Yes to restart AD CS when the CA database is restored.

Change the following registry entries with new server FQDN.

That’s it…!!

Reader Interactions

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Primary Sidebar

Recent Posts

  • privacy
  • Veeam Backup – Failed to prepare guests for volume snapshot
  • How to Configure/Integrate FortiClient EMS with FortiAnalyzer
  • Backup Hyper-V Virtual Machines with Pass-Through Disks
  • Slow Network Speed with Hyper-V Virtual Machines on Windows Server Server 2019
  • Block MS Exchange Server OWA access from Internet
  • Error 1168 – The specified product key could not be validated.
  • Unable to Enable Desktop Icons after Joining to the Domain
  • Veritas BackupExec – A backup set was created which contains no data 0xe00084b7
  • Download Offline Address Book – Unexpected Error has occurred

Deprecated: genesis_footer_creds_text is deprecated since version 3.1.0! Use genesis_pre_get_option_footer_text instead. This filter is no longer supported. You can now modify your footer text using the Theme Settings. in /home/wwwdoitf/public_html/wp-includes/functions.php on line 5238