Change the CA certificate of the subordinate CA. RRS feed

  • Question

  • Hello,

    We just changed certificate authority on a linux, the problem is that our domain controller on windows server 2012 is the subordinate CA.

    What we want to do is change the CA of our subordinate CA and then renew the CA subordinate with the new CA.

    We tried to import the new CA by going to "Certificate Authority (Local)" -> "All Tasks" -> "Install Certificate Authority Certificate".
    But he tells us that the certificate does not match the old CA (which is normal considering that we want to put a new one and not just renew it)

    We also tried to generate a new certificate from our subordinate, to do this we go to "certificate authority (local)" -> "All tasks" -> "Renew certificate authority certificate"
    We have reclaimed the .req on our new certification authority, then we generated a certificate, from this step we do not know where to import it.

    Thank you in advance for your help.
    Wednesday, October 10, 2018 5:15 PM

All replies

  • Is your Root CA on a Linux device? That is not quite clear to me.

    Are there more subCAs in your environment?

    And more important, why are you mixing platforms in your PKI?


    Monday, December 31, 2018 12:30 PM