Renewal of CA Certificate Resets Security and Policy Settings to Default

Article translations Article translations
Article ID: 289213 - View products that this article applies to.
This article was previously published under Q289213
Expand all | Collapse all


When you use the Certification Authority (CA) snap-in to install a new certificate on your local Windows 2000 CA, the CA server's security and policy settings are both reset to their default values.

This behavior occurs after you use the CA snap-in to renew a certificate issued by a parent CA, use a Web form to submit a request file to the parent CA, and then download the certificate. This behavior does not occur if you renew a certificate by sending it to a parent CA that is online.


To resolve this problem, obtain the latest service pack for Windows 2000. For additional information, click the following article number to view the article in the Microsoft Knowledge Base:
260910 How to Obtain the Latest Windows 2000 Service Pack


Microsoft has confirmed that this is a problem in the Microsoft products that are listed at the beginning of this article.

This problem was first corrected in Windows 2000 Service Pack 2.


Article ID: 289213 - Last Review: January 31, 2007 - Revision: 3.2
  • Microsoft Windows 2000 Service Pack 1
  • Microsoft Windows 2000 Advanced Server
  • Microsoft Windows 2000 Service Pack 1
kbbug kbfix kbwin2000presp2fix kbenv kbpolicy KB289213

Give Feedback


Contact us for more help

Contact us for more help
Connect with Answer Desk for expert help.
Get more support from