Problem with CA

Hi
I have runnig the following system:

One single server with Windows Server 2003 as a domain controller, with iis,
exchange, active directory and certification authority.
The system was set up about one year ago.

Now the certificate from the server itsselves has expired.
In the Errorlog I get the warning from CertSvc ID:77.
In the Public Key Management interface in outstanding certificates every day
three new requests appears for the domain controller certificate. But when i
issue one of them, the certificate it appears under the exposed certificates,
but not under local computer - own certificates. There is still the old
expired certificate.

With right click on the expired certificate i have to decide from:
Certificate with new key, with same key or renew with new or same key.
But the I get the error message that the cert authority refused the reqest
with the information that there is no required certificate in the valid
period of system time or time stamp....

Can anybody help me with this problem? The people working on the system
takes no notice of the problem at the moment - but I have a bad feeling with
it...
thanks

Hi Phil,The problem is that the CA certificate has expired, you need to renew

Hi Phil,

The problem is that the CA certificate has expired, you need to renew the
root CAs certificate before you can renew any certificate issued from it.

In the Certificate Authority Console, right click on the server and select
renew certificate, select use existing keys.  Once the certificate is
renewed you will then be able to renew the server certificates.

Gary.


iis,
day
i
certificates,
with