Sign in
 
HomeWindows Server 2012Windows Server 2008 R2Windows Server 2003LibraryForums
Windows Server TechCenter >
why would a published cert suddenly dissapear from ad ?

Answered why would a published cert suddenly dissapear from ad ?

  • Tuesday, March 06, 2012 9:45 PM
     
     
    Sign In to Vote
    0

    Hi All,

    We recently had reports of user's published email certs dissapearing from ad, even users not having their certs renewed.

    Anyone have any idea on why this could happen?

    Regards,

    Dan

    IT Consultant

     

All Replies

  • Wednesday, March 07, 2012 6:41 AM
     
     
    Sign In to Vote
    0
    it is probably due to certificate expiration. Autoenrollment removes expired (and invalid) certificates from Active Directory.

    My weblog: http://en-us.sysadmins.lv
    PowerShell PKI Module: http://pspki.codeplex.com
    Windows PKI reference: on TechNet wiki

     
  • Wednesday, March 07, 2012 12:31 PM
     
     
    Sign In to Vote
    0
    actually the user cert stays in his store and is still valid and I have to export it without private key and import into ad to fix it when it happens

    IT Consultant

     
  • Tuesday, March 13, 2012 5:52 AM
    Moderator
     
     Answered
    Sign In to Vote
    0

    Hi,

    What exactly is the issue that prevented user sending encrypted email message? For the secure mail communication, the client required a valid secure mail certificate for digital signature. Meanwhile, the recipients must have the client mail certificate (public key).  

    For more information about secure mail, please refer to the following article:

    Security
    http://technet.microsoft.com/en-us/library/cc938853.aspx


    Best Regards,
    Aiden

    Aiden Cao

    TechNet Community Support