This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(76.8, 42%, 17%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EM%3C/text%3E%3C/svg%3E)
Hi,
I have migrate my CA from WK2008R2 to the WK 2019 Server successfully. Now I get the Status of my Exchange Certificate
My second issue is, that I cannot any more to go the CA with https://mynewCA/certsrv
Any Idea?
Regards
Nick
Please can I ask you dont send me only stitch words like "Certificate Path". If I go to the IIS server on the Exchange server and select Server Certificate, I see there my Certificates and click on view--> Certifocate Path, I see there no error. What I see on the IIS, I have a Question mark on Default web Site
The Link you send me, is for proxy setting.
I have to mention that I have migrate CA from WK 2008 R2(it was called "SRV2008") to WK 2019 server before two weeks. Before migration the Exchange has been work fine. After Demoting the WK 2008 R2(SRV2008) and dejoined the Domain, I have installed WK 2019 and called a different name "SRV2019" promote it and joined the domain and restored the CA on the new WK 2019.
For migration I have followed exactly that Link
https://techcommunity.microsoft.com/t5/itops-talk-blog/step-by-step-migrating-the-active-directory-certificate-service/ba-p/697674
In above Link for migration is a note that the new WK 2019 server should have the same name like WK 2008 R2, is that true?
*****NOTE: The new 2016 / 2019 server needs to have the same "Name" as this point. The screenshots below show the server name as WS2019 to highlight which server we are working on. This step-by-step highlights screenshots from Windows Server 2019. Windows Server 2016 process is the same with similar screenshots****
My new WK 2019 DC has a different name as WK 2008 R2. Is that the problem?
thank you for help
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(25.6, 67%, 12%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJS%3C/text%3E%3C/svg%3E)
It's OK to Move a CA from one computer to a computer with a different host name.
The official document here: cc742388(v=ws.10)
It also list the AD CS Migration: Post-Migration Tasks Retrieving certificates after a host name change
If the destination server name is different from the source server name, you might need to manually retrieve any certificates that were issued by the source CA and had not been retrieved before migration.
Please refer to below threads discussed the similar issue as yours:
ADCS site throwing 500 error after migration
Can not open http://servername/certsrv
Ensure IIS is running on <servername>.
Ensure that the Default Web Site is running, as /certsrv is actually a virtual directory underneath.
The default folder path to /certsrv web site is actually C:\Windows\system32\CertSrv\en-us - check if files are there.
In addition, you could refer to the step-by-step guide to perform the migration: Step-By-Step: Migrating The Active Directory Certificate Service From Windows Server 2008 R2 to 2019
Hi,
It is no answer of my question. I have asked about Exchange Certificate certificate revocation checking failed?
Regards
Your server cannot connect CRL path of the certificate. Please check on the certificate path under the "Certificate Path" of the certificate in IIS manager and see if it has an exclamation mark or not.
You could also refer to the article discusses the solution about Exchange 2010 Certificate Revocation Checks and Proxy Settings