Hello
Can someone please help me with the following question.
I have Microsoft Windows 2003 R2 SP2 and the Enterprise CA's the Rota CA and a Subordinate CA to the Root CA.
I know little about AD CS and PKI in general
I see certificates in the issued store, all with the following name but different expiry dates,
lets say my root CA is called "MyDomainCA" and the subordinate CA called "MyDomainSubCA" as above I have several certificates I can see in the Issued store in the subordinate CA these are all called "MyDomainSubCA-Xchg" all of these certificates have expired. AD CS appears to be working at least on the service.
Can someone please explain what the above Certificate? is used for. Is the cert created by the root for the subordinate when it was fist initiated?
As stated the several certs in the store (all with the same name) have expired at varying dates in the past.
Is this important? if so should I create a new "MyDomainSubCA-Xchg" and if so how?
Does any one of a good video/s about PKI and in particular AD CS, as I learn faster via videos (or a good book on PKI and in particular AD CS.
Thanks All
JoB333x!