Hello All,
Cannot seem to find a guideline for this so I am unsure if it will work or not.
I currently have a Windows 2003 Domain with an Enterprise CA server running on one of the domain controllers. I am in the process of upgrading to win2008 R2 / win2012 R2 Domain however this is still going to take some time. The 2003 Cert Server only has published Certificates for the domain controllers and Exchange owa / rpc over https.
My idea is to install a new offline Root CA win 2012 and a new ADCS Enterprise subordinate certification authority (2012 R2) server connected in the domain for distribution of certificates and Leave the old 2003 ADCS in place until I have pointed all of the clients to the new ADCS server and distributed the certificates. Then uninstall and remove the last 2003 DC with the Certificate services from the domain.
Question is will this work or will I run into other problems that I have not anticipated.
Thanks in advance