expired certs requested by a user that is no longer in AD
-
Thursday, February 21, 2013 6:00 PM
My CA is showing some certs in the "Issued Certiifcates" that were orginally requested by a user that is no longer here. The certs have all expired.
My problem is that I am trying to roll-out FIM CM and import the old certs in to the FIM CM database. Importing dies when it hits this user an doesn't skip over his certs.
Can I revoke all of them so that I can import them to FIM CM without causing any problems with the CA?
Thanks!!!!
All Replies
-
Thursday, February 21, 2013 7:20 PM
Your problem is that you have deleted the original user. You are going to have to do a segmented import where you skip those specific certificate requests. You could potentially associate the certificate with a new request when you use clmutil to import the certs.
Revoking will not work, as revoked certs are also imported into the database (just with a different status).
Brian
- Marked As Answer by K_evin ZhuMicrosoft Contingent Staff, Moderator Monday, March 11, 2013 8:27 AM
-
Thursday, February 21, 2013 7:39 PM
Would I set clmutil to do the segmented import in the config file or by switch? I'm not finding anything about it.
Thank you!!!!
.png)
