none
trying to decomission a Microsoft Active Directory Certificate Authority getting an error

    Question

  • Hello,

    I am trying to decommission a CA per this KB article: http://support.microsoft.com/kb/889250

    When I get to Step 3: Publish a new CRL I am getting this error: Directory object not found.  0x8007208d

    I might also point out that I recently renamed this DC using the netdom command I followed this article: http://technet.microsoft.com/en-us/library/cc816601(v=ws.10).aspx

    I want to completely decommission this domain controller and start from scratch.  But I'm concerned there will still be references to this old no longer working Certification Authority.  Any help would be most appreciated!  Thank You.

    Wednesday, February 19, 2014 10:12 AM

Answers

  • Hi,

    Did you install CA on your DC? It is not recommended install Active Directory certificate services on DC, and as far as I know, we should not change the computer name for CA, certification authority relieson a fixed computer name.

    And after you rename the DC, please also recheck your CRL path for your CA.

    Regards,

    Yan Li


    Regards, Yan Li

    Friday, February 21, 2014 5:43 AM

All replies