Note
Access to this page requires authorization. You can try signing in or changing directories.
Access to this page requires authorization. You can try changing directories.
Question
Tuesday, October 28, 2014 4:59 PM
Hi!
During installation of standalone root ca I made a mistake in distinguished name of root CA. How can I correct distinguished name and recreate Root CA certificate? I don't want to reinstall everything from "0". Thank you.
All replies (4)
Wednesday, October 29, 2014 11:03 AM âś…Answered | 1 vote
It is not possible to change CA name (either common name, or DN suffix). You have to completely remove existing CA and set up a new one.
My weblog: en-us.sysadmins.lv
PowerShell PKI Module: pspki.codeplex.com
PowerShell Cmdlet Help Editor pscmdlethelpeditor.codeplex.com
Check out new: SSL Certificate Verifier
Check out new: PowerShell FCIV tool.
Tuesday, October 28, 2014 9:25 PM
Dear Mike,
To rename an determined object distinguished name you can use the Rename-ADObject on PowerShell. I think that re-create the Root CA except from scratch unfortunately it's not possible or at least advised in the way suggested.
Kindly Regards,
Wednesday, October 29, 2014 10:46 AM
Thank you very much for reply. i'll try to explain what exactly I mean. During CA installation guide we can specify distinguished name. Can we change it later for CA? I want to renew my root ca certificate with same key pair but new distinguished name.
C=Local is wrong entry. I need to change it to C=US for example.
Wednesday, October 29, 2014 11:27 AM
Thank you, Vadims!