I have two domains that share a one way trust. Domain A has the CA server. The CA server certificate expires in 2015 so I went ahead and renewed. Now when I go into the properties of the CA, it lists under the General tab, Certificate #0 which expires
in 2015 and Certificate #1 which expires in 2019.
On Domain B, I can not get out the the CA's site to install the Trusted Root CA so I have to download them manually from a server in Domain A and then copy them to the server in Domain B.
On Domain B server, I noticed I can now get to the CA's site when I import Certificate #0 which expires in 2015 and my SCOM agent can now communicate to Domain A. But if I only import Certificate #1, I still can not get out to the CA's site and my SCOM agent still can not communicate to Domain A.
Why does Certificate #0 work and not #1?
On Domain B, I can not get out the the CA's site to install the Trusted Root CA so I have to download them manually from a server in Domain A and then copy them to the server in Domain B.
On Domain B server, I noticed I can now get to the CA's site when I import Certificate #0 which expires in 2015 and my SCOM agent can now communicate to Domain A. But if I only import Certificate #1, I still can not get out to the CA's site and my SCOM agent still can not communicate to Domain A.
Why does Certificate #0 work and not #1?