Hasain Alshakarticertutil Archives

"Rip and Replace" certificate services from Windows Server 2003 to 2008

September 29th, 2008 Hasain Comments off

Is it possible to migrate a Windows Server 2003 based Certification Authority to Windows Server 2008?

The answer is yes but you need all detailes in the Active Directory Certificate Services Upgrade and Migration Guide from Microsoft found at http://www.microsoft.com/downloads/details.aspx?FamilyID=C70BD7CD-9F03-484B-8C4B-279BC29A3413&displaylang=en

The short answer would be that you need to performe the following steps:

Backup your existing CA using the certutil -backup command
Install the new Windows Server 2008 CA with the same name as the replaced server
Add the ADCS role and import the CA-certificate from the backup
Upgrade the templates to WS2008
Restore the old CA database using the certutil -restore command

/Hasain

Blog this!
Bookmark on Delicious
Digg this post
Recommend on Facebook
Share on Linkedin
Share via MySpace
share via Reddit
Share with Stumblers
Tumblr it
Tweet about it
Buzz it up
Subscribe to the comments on this post
Print for later
Bookmark in Browser
Tell a friend

Categories: ADCS, certutil, Security, Windows Server 2008 Tags:

Hasain Alshakarti

Archive

"Rip and Replace" certificate services from Windows Server 2003 to 2008

Follow me on Twitter

Hasain @TechNet Forum

Categories

Blogroll

Archives

Meta