Hi @Nithyanandham Singaravadivelu
When your Windows Enterprise Root CA server is shut down for a minimum of three days, there may be several potential impacts on your organization's operations. Before shutting down the server, it's important to assess these impacts and perform the necessary pre-checks to minimize any potential issues.
Potential impacts:
- Certificate issuance: Your organization will not be able to issue new certificates during the downtime.
- Certificate renewals: If any certificates expire during the downtime, they will not be able to be renewed, potentially causing outages or disruptions.
- Revocation of certificates: If a certificate needs to be revoked during the downtime, it will not be possible until the server is back online.
- Trust chain validation: Any systems that rely on the root CA for certificate validation may encounter issues during the downtime, as they will not be able to verify the trust chain.
Pre-checks:
- Review certificate expiration dates: Ensure that no critical certificates are set to expire during the downtime. If necessary, consider extending the validity of certificates that are due to expire during this period.
- Verify system dependencies: Identify any systems or services that rely on the root CA for certificate validation and ensure they can function without the root CA for the duration of the downtime.
Hope the information is helpful.
Best Regards,
Hania Lian
============================================
If the Answer is helpful, please click "Accept Answer" and upvote it.