© 2024 SkillPoint IT. All rights reserved.
Notifications
Clear all
Troubleshooting Certificate Services in Windows Server: Logs, CA Errors & Certificate Validation
1
Posts
1
Users
0
Reactions
5
Views
Topic starter
22/07/2025 7:06 am
Steps to Validate a Certificate:
-
Open certificate in MMC → Details tab
-
Check:
-
Issuer matches the correct CA
-
Validity period is current
-
Signature algorithm is valid (not SHA1)
-
-
Click Certification Path tab:
-
Ensure there are no red Xs in the chain
-
-
Check Revocation Status:
-
Ensure CRL or OCSP is reachable and up to date
-
Use:
-
certutil -verify certificate.cer
ip: Use certutil -urlfetch -verify to test both OCSP and CRL connections.