question

RokoKrzysztof-1134 avatar image
0 Votes"
RokoKrzysztof-1134 asked RokoKrzysztof-1134 commented

How do I renew my SubCA certificate?

I have an environment based on a 2-tier PKI.
Both servers belong to the domain.
The PKI has been running for many years and has survived 2 migrations from level 2003, through 2008r2 to 2012r2.
the SubCA is about to expire and when I try to renew it I get an error that the SubCA certificate is not a CA certificate.
Indeed, the Basic Constraints type tag is not enabled in the query. So then the certificate does not have this entry.
I have reinstalled SubCA, trying to add another new one using CAPolicy.inf. Unfortunately without success.

Does anyone have an idea?

windows-server
· 2
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

Roko. Mira el siguiente enlace. Estoy seguro que solucionará tu problema. Saludos.
https://itadmins.es/renovando-el-certificado-de-la-sub-ca/

Roko. Check out the link below. I am sure it will solve your problem. Greetings.
https://itadmins.es/renovando-el-certificado-de-la-sub-ca/

0 Votes 0 ·

Thanks @EstebanVoeffray-0577. I may have asked too simple a question, but I know how to do it. the problem is that this standard procedure does not work. An error is returned that the issued certificate is not a CA certificate

0 Votes 0 ·

0 Answers