I've migrated an Enterprise Root CA from a Windows 2003 domain controller to a Windows 2012 member server. The new CA server and the old one have different names. All seems fine except that I have some bad locations for CDP & AIA.
AIA & CDP Locations #1 and #2 show as good and I can see the new CA host name in the URL. One is http and the other is ldap.
AIA Location #3 is http and shows as "unable to download". CDP Locations #3 (ldap) and #4 (http) are also bad. All bad URLs reference the retired CA's host name.
I assume that I am getting the URLs which reference the retired CA's host name because they were in the Reg key that I imported to the new CA. I did back up the default Reg key from the new CA before importing the retired CA's key. Are there subkeys that I should delete in the current Registry and then import from the saved default Reg key? Is there some other way to fix this. Do I need to do this in the Extensions tab of the CA Properties? I assume not because I do have correct CDP locations and AIA locations along with the bad ones.
Thanks in advance for any help. Hopefully I have given enough information.