hi All
in my test hyper-v lab, i have deployed 4 virtual machines , one 2008R2 SP1 Domain controller , one enterprise root CA srv , one enterprise subordinate CA and one joined win 2008 R2 sp1 VM ( as https web server.)
after i deployed subordinate enterprise CA , i went to root CA certificates console and i revoked that subordinate CAs certificate.in root CA certificate console , in revoked certificates node , i selected publish. Also in my All clients , i ran gpupdate
/force command.
but still my win 2008R2 vm ( vm4) can connect to this CA server and obtain certificates . my domain computers doesn't detect that this CA server is not valid.
so how can i forcefully destroy the validity of an subordinate CA server via root ca server ? ( i don't have Access to subordinate server )
thanks to All