My recollection is that Enterprise CAs have a mechanism to push certs out into GPOs. You might check the default domain policy.
Thanks, Brian Desmond [email protected] c - 312.731.3132 From: Christopher Bodnar [mailto:[email protected]] Sent: Tuesday, September 22, 2009 11:03 AM To: NT System Admin Issues Subject: Intermediate Certification Authorities Need help with this: Windows 2003 forest functional level. We currently do not have a PKI infrastructure. There is a certificate in every machines Intermediate Certification Authorities -> Certificates folder , and I'm not sure how it got there. I had a test server that I installed Dell IT Assistant on back in May. I believe the server generates a self signed certificate for SSL communication. Now that certificate is on every machine in the domain. I did NOT add it to any GPO. How is it getting there? Any thoughts? Thank you, Chris ________________________________ This message, and any attachments to it, may contain information that is privileged, confidential, and exempt from disclosure under applicable law. If the reader of this message is not the intended recipient, you are notified that any use, dissemination, distribution, copying, or communication of this message is strictly prohibited. If you have received this message in error, please notify the sender immediately by return e-mail and delete the message and any attachments. Thank you. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~
