Awhile back we re-issued certificates in our Forest/domains with 1024 key. We were at 512. We are now having a problem with an application trying to use SLDAP and allow the user to change passwords. Others are saying the DC's are not using the new 1024 key.
1. Is there a way to verify this?
2. If the DC's are using the 512 bit key, then how do we get the DC's to utilize them instead.
One person has mentioned re-enrollment, but I can't find anything on the net about doing that manually for the dc's. Note: This first came up because of the bullentin 2661254.
Lastly, our Forest has 3 domains underneath it.
Any help would be greatly appreciated!