Moving to a new Certifcate Authority RRS feed

  • Question

  • Hey Guys,

    I'm looking for a bit of direction here.

    I'm in a scenario where I need to use a completely different CA to manage my SCCM clients. Long story short, I can no longer use the old CA and so any new clients fail to get a cert and cannot install the SCCM client properly. In the meantime I have changed communications from HTTPS to HTTP to keep the wheels from falling off things.

    What do I need to do to get SCCM working with the new CA so I can flip back to using the more secure HTTP/PKI.

    Any help to point me in the right direction would be greatly appreciated! Thanks!

    Wednesday, April 30, 2014 3:23 PM


All replies

  • Basically just follow the docs for settings up https in CM12: http://technet.microsoft.com/en-us/library/gg682023.aspx

    Torsten Meringer | http://www.mssccmfaq.de

    Wednesday, April 30, 2014 4:14 PM
  • Note that while Torsten's answer is correct and will satisfy your perceived requirement, setting up a PKI to support an enterprise environment is a much bigger endeavor than simply simple following a generic "example" walk-through. There are multiple informed decisions and design choices that should be made as well as many negative ramifications if you don't know the details. Please seek out assistance with setting up a PKI if you do not have it yourself or at least do a lot of research. There are a handful of good (not great) reference guides on TechNet blogs as well as Brian Komar's excellent PKI book.

    Jason | http://blog.configmgrftw.com

    Wednesday, April 30, 2014 5:34 PM