This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
Hi,
our ceritificate autority server damaged and we were unable to recover.
What should I do to install a new certificate autority?
Thank you.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(233.6, 96%, 32%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EFF%3C/text%3E%3C/svg%3E)
Hi,
Welcome to share your current situation if there are any updates.
Please feel free to let us know if you need further assistance.
Best Regards,
Hi,
As this thread has been quiet for a while,
If this question has any update?
If you have any questions or concerns about it, please don't hesitate to let us know.
Best Regards,
Hi,
To know the issue more clearly, would you please confirm the following information:
1, Is your environment a 2 tier PKI or one tier PKI?
2,The damaged CA is a offline CA or an enterprise CA (Issue CA)?
3,If the old PKI is not used any more , we 'd better remove the old one ,and then install a new CA,
To remove the Orphaned Certificate Authority from AD, refer to the steps 5-9 in the following link:
https://video2.skills-academy.com/en-us/troubleshoot/windows-server/windows-security/decommission-enterprise-certification-authority-and-remove-objects
To create a new one tier pki or 2 tier pki, please refer to the following links:
https://social.technet.microsoft.com/wiki/contents/articles/11750.adcs-step-by-step-guide-single-tier-pki-hierarchy-deployment.aspx