Hi
Is it possible to stop a windows 2003 Enterprise SubCA from issuing itself a CA Exchange certificate? and if so, how?
I have a client who specifically has this requirement to prevent the issuance of the CA Exchange certificate. They have no key archival requirements at all and do not issue any encryption certificates. I realise the implications for the 2003 version of PKIveiw.
I'm 80% sure it can not be done but would like some confirmation.
cheers
Todd