Hi
So we have a Domain Controller with a certification authority which looks as though it was installed for a specific support tool as in the CA name it mentions the tool in this format: SERVERNAME-CA-SOFTWARE.
First, how do i know that this is actually being used and secondly, if it isnt can it be removed. all the devices on the network seem to have this certificate which runs from 2016 (which is when it was installed) to 2021. in the certification authority MMC console the only certificates that are issued are to domain controllers using the Domain Controller Template. there also seems to be one user.
My preference would be to remove this Certificate Authority set up and create a new one otherwise i'll need to migrate it if it is being used as I need to decommission the server that its on.
looking at this page: https://learn.microsoft.com/en-us/troubleshoot/windows-server/windows-security/decommission-enterprise-certification-authority-and-remove-objects
I do not see any of the objects under step 6 within AD so I'm not sure it was even set up correctly as this was setup before I was an employee at the location.
From what I can tell is that they installed it using these instructions
http://gregtechnobabble.blogspot.com/2012/11/enabling-ldap-ssl-in-windows-2012-part-1.html