We have to set up a new CA using HSM(Hardware Security Module) system, and I need to reissue the CA certificate with thesame key pair. To me it looks like a straight forward process from Microsoft. Please see the tech note below. My question, is since the private key is stored in the HSM module, should I take any special precautions while I do this?
http://technet.microsoft.com/en-us/library/cc776691%28v=ws.10%29.aspx#BKMK_CMD