This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(265.6, 75%, 35%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ELY%3C/text%3E%3C/svg%3E)
Hi,
I plan to remove and reconfigure Root CA in my environment, the SCCM infrastructure uses a PKI, so my question, if I remove the Root CA server and configure another one, I need to configure the SCCM environment with a new certificate from the new root CA or I have to use some other method to do it.
Thanks.
A+
You can have multiple root CAs to help facilitate a slower transition. The root CA configured ion the client communication tab of the site is used for client cert selection and this CA is also added as a trusted root on devices going through OSD.
What's happening to old root CA?
I have some requirements to redeploy a new root CA.
Right, not questioning that but it doesn't answer the question of what's going to happen to the old root CA and when it will happen (if anything)?
for some requirements I plan to change the configuration of the root CA, in this case, I have to re-deploy it.
That still doesn't answer the question: what will happen to the existing root CA?
It works but I'm planning to change some configuration