I just want to clarify a step that is listed in the AD CS Migration article. It says if you're using the Server Manager installation of the role you need to follow these steps:
Start the Certificates snap-in for the local computer account.
In the console tree, double-click Certificates (Local Computer), and click Personal.
On the Action menu, click All Tasks, and then click Import to open the Certificate Import Wizard. Click Next.
Locate the <CAName>.p12 file created by the CA certificate and private key backup on the source CA, and click Open.
Type the password, and click OK.
Click Place all certificates in the following store.
Verify Personal is displayed in Certificate store. If it is not, click Browse, click Personal, and click OK.
![note]( "note")
NoteIf you are using a network HSM, complete steps 8 through 10 to repair the association between the imported CA certificate and the private key that is stored in the HSM. In the console tree, double-click Personal Certificates, and click the imported CA certificate.
On the Action menu, click Open. Click the Details tab, copy the serial number to the Clipboard, and then click OK.
Open a Command Prompt window, type certutil –repairstore My "{Serialnumber}" and then press ENTER.
NoteNow, do I actually need to follow this? In the 2012 role installation you click "configure" and import the .p12 via the GUI. Do I need to do step #10?