There are two ways to see which Certificate Authority servers exist in your AD domain.
The AD group Cert Publishers contain the servers that are permitted to publish certificates to AD. As a consequence, this gruop will contain all servers that are CAs.
You can use the certutil command to view (and select from) a list of CAs in the current AD domain:
certutil -config - -ping
Note: type the command as-is, including all spaces and hyphens.
A window will appear, listing the CA name and the server it runs on.
« ‹ | October 2024 | › » | ||||
Sun | Mon | Tue | Wed | Thu | Fri | Sat |
1 | 2 | 3 | 4 | 5 | ||
6 | 7 | 8 | 9 | 10 | 11 | 12 |
13 | 14 | 15 | 16 | 17 | 18 | 19 |
20 | 21 | 22 | 23 | 24 | 25 | 26 |
27 | 28 | 29 | 30 | 31 |