Score:0

Windows Domain Controller - SSL Cert with Two Hosts In Subj. Alternative Name (SAN)

in flag

My Domain Controllers auto enroll and get a Computerv2 cert that handles server authentication. One of the apps we use requires an SSL cert with a SAN that contains multiple hosts. I know how to create a certificate request that contains multiple hosts in the SAN. I have a couple of questions.

  • Can I just delete the auto enrolled Computerv2 certificate and import the private key for the multi SAN certificate to both Domain Controllers in the SAN

  • Could this break anything ADDS related? I think ADDS replication encrypts with Kerberos so I should be ok there.

br flag
Just enroll for another certificate for the app.
mangohost

Post an answer

Most people don’t grasp that asking a lot of questions unlocks learning and improves interpersonal bonding. In Alison’s studies, for example, though people could accurately recall how many questions had been asked in their conversations, they didn’t intuit the link between questions and liking. Across four studies, in which participants were engaged in conversations themselves or read transcripts of others’ conversations, people tended not to realize that question asking would influence—or had influenced—the level of amity between the conversationalists.