Posted by steve_nsi on September 25, 2006, 4:40 pm
Please log in for more thread options
I have a standalone certificate authority running on a Windows 2003
Server for L2TP/IPSEC VPN.
2 years ago, I set this up and created a 5 year self-signed CA root
certificate for it. It has been running fine ever since - up until
this past weekend. Suddenly, on the 2-year anniversary date of
creating that certificate, this server has ceased to validate
certificates. Everything shows up as being fine in the Certification
Authority management window. Also, the required services, etc are
running fine.
Is this pure coincidence that it has happened on the 2-year anniversary
date of the 5-year certificate or is there a bug somewhere?
I am able to request and install new certificates from
http://<server>/certsrv as well as the root certificate chain (the 5-year cert. in question) but none of them will actually validate.
I will be glad to provide more details if necessary.
Anyone have a clue on this?
Thanks,
Steve
Posted by steve_nsi on September 28, 2006, 12:04 pm
Please log in for more thread options
Nevermind, it was due to the (second) expiry of the one-year "Client
Authentication Certificate" on the server.
XML Sitemap