Use this guide to decommission Certification Authority: https://social.technet.microsoft.com/wiki/contents/articles/3527.how-to-decommission-a-windows-enterprise-certification-authority-and-how-to-remove-all-related-objects.aspx
Old CA referneces cleanup
Hi,
Looking for steps/guide to follow to cleanup old certificate authority references
as server containing CA role was removed completely without following a proper decommission process and a new PKI environment was created (root CA and subordinate setup)
hence references of old CA still exist in the environment when new certificate is requested also same can be viewed after executing "certutil –config – -ping" with two CA names (old and new)
thanks in advance!
Windows for business | Windows Server | User experience | Other
Windows for business | Windows Server | Devices and deployment | Configure application groups
2 answers
Sort by: Most helpful
-
-
Anonymous
2021-01-05T01:02:57.177+00:00 Hi,
Since the CA role was already removed , you can refer to the steps from step 6 to do a ca reference cleanup.
https://learn.microsoft.com/en-us/troubleshoot/windows-server/windows-security/decommission-enterprise-certification-authority-and-remove-objectsBest Regards,