Hi
I've had a look at the configuration of our enterprise PKI. We're using a Windows 2008 R2 EE server for the CA, FIM CM and a dedicated SQL DB. FIM CM creates three default accounts (FIM-EnrollAgent, FIM-Agent FIM-Key Recovery Agent) which use certifiates. Now I'm curious what happens to these certificates when I create a server backup. The backup is not encrypted, which means that a person who has access to the backup can access the certificates.
What are the risks?
Thanks for your thoughts!