Issue with 1 tier ADCS server PKIView showing errors Unable To Download

mpls 80 Reputation points

Good Day, me and our team inherited an AD and AD CS environment that was not looked after properly. We are looking to retire this AD CS but we are still using it for 802.1x Radius Auth with Wifi.

AD CS was discovered to be running on an old DC. The AD CS environment was backed up and restored to a new server which had a different hostname and I believe this was done properly as the CA still reference the old hostname along with the new one. Then the root cert needed to be renewed and it was with the existing pair.

We are currently seeing an issue with PKIView in regards to 1 CDP location and two DeltaCRL locations. All three of the ones showing error say Unable to Download. All items here are pointing to .crl files except for the AIA location. The URL's that the three items below with errors are all reachable from domain machines and are http paths to the ADCS server which is also running IIS. Again currently this server is a single tier domain server.

Here are the "unable to download" urls. Is it possible to fix this? Currently I think the biggest negative of this situation would be the machines are not turning in their expired or superceded certs which I can understand is a security issue is CDP Location #1 and Delta CRL Location #1

[] is Delta CRL Location #2 (also error)

Can we correct these bad CDP and Delta CRL issues

User's image

Active Directory
Active Directory
A set of directory-based technologies included in Windows Server.
6,096 questions
Windows Server Security
Windows Server Security
Windows Server: A family of Microsoft server operating systems that support enterprise-level management, data storage, applications, and communications.Security: The precautions taken to guard against crime, attack, sabotage, espionage, or another threat.
1,767 questions
0 comments No comments
{count} votes