locked
[Microsoft PKI] AIA settings not well updated RRS feed

  • Question

  • after installing a standalone root ca (on 2016 server, without the capolicy.inf), the root certificate is located in c;\windows\system32\certsrv\certenroll\rootca_ROOTCA.crt

    'rootca' is the name of the machine & 'ROOTCA' is the name of the CA

    that corresponds the default AIA definition: c;\windows\system32\certsrv\certenroll\%1_%3%4.crt

    If i change the AIA definition to

    c;\windows\system32\sertsrv\certenroll\%3%4.crt

    After restarting i still get the file c:\windows\system32\certsrv\certenroll\rootca_ROOTCA.crt

    I would expect c:\windows\system32\certsrv\certenroll\ROOTCA.crt

    Do you know what's the problem?

    Regards

    Thursday, August 23, 2018 9:10 AM

Answers

All replies

  • Be aware that this forum is specifically for the Advanced threat protection product.

    https://docs.microsoft.com/en-us/windows-server/networking/core-network-guide/cncg/server-certs/configure-the-cdp-and-aia-extensions-on-ca1

    I would post in the Windows server security venue and not this one for better help.

    Friday, August 24, 2018 6:06 PM
  • yes wrong place. thanks.
    • Marked as answer by laurent feron Friday, September 7, 2018 2:26 PM
    Friday, September 7, 2018 2:25 PM