I have a 2008 R2 DC server running as a CA at site 1.
I also have 2008 R2 DC's at site 2 and site 3. The DCs at site 2 and 3 are NOT auto-renewing their Domain Controller certificate.
Is this something 2008 R2 DCs should do automatically, or must I have appropriate GPO settings so they renew their Domain Controller certificate? I thougth this was automatic.... What should I check first to see why they are not getting a
new cert (the current one is expiring in 2 days)? I checked my CertSVC_DCOM_ACCESS group and the Domain Controllers group IS a member of it already.
Microsoft is conducting an online survey to understand your opinion of the Technet Web site. If you choose to participate, the online survey will be presented to you when you leave the Technet Web site.