F
fujitsuuk
Hi
I am setting up Cross Forest certificate enrolment for 2 forests that have 2 way trusts and an existing mature Enterprise CA in both.
I am using this documentation:
https://docs.microsoft.com/en-us/pr...dows-server-2008-R2-and-2008/ff955845(v=ws.10)
In the step by step at 5) it tell me to :
Enable LDAP referral support on enterprise CAs. Start a command prompt, type certutil - setreg Policy\EditFlags +EDITF_ENABLELDAPREFERRALS, and press ENTER.
If I need to back out enabling the cross forest LDAP referrals because of some unforeseen effects, am I able to do this easily? I suspect it is not as simple as re-running the command with DisableLDAPREFERRALS
Would I be looking at a total rebuild of of both enterprise CAs along with all of the current extensive certificate configuration which would clearly be a hugely painful situation?
any help appreciated
Thanks
Continue reading...
I am setting up Cross Forest certificate enrolment for 2 forests that have 2 way trusts and an existing mature Enterprise CA in both.
I am using this documentation:
https://docs.microsoft.com/en-us/pr...dows-server-2008-R2-and-2008/ff955845(v=ws.10)
In the step by step at 5) it tell me to :
Enable LDAP referral support on enterprise CAs. Start a command prompt, type certutil - setreg Policy\EditFlags +EDITF_ENABLELDAPREFERRALS, and press ENTER.
If I need to back out enabling the cross forest LDAP referrals because of some unforeseen effects, am I able to do this easily? I suspect it is not as simple as re-running the command with DisableLDAPREFERRALS
Would I be looking at a total rebuild of of both enterprise CAs along with all of the current extensive certificate configuration which would clearly be a hugely painful situation?
any help appreciated
Thanks
Continue reading...
