I have a very simple 30 user setup. Along with this there is a Exchange server also. There is only on Active Directory setup. The root CA is the one which issue the certificates. The workstations certs are configured on autoenrollment. I know that it i will be better to have subordinate CA for every remote place to issue cert. What I want to know that after configuring this, what can be effect on current workstations which are already having a CA. I just want to know the different of setup that I am planing. All the computer might get the cert from root only, but some of them which lies on the remote place will be using subordinate CA. But that too rely on the root. So I hope there will be no security compromised.
Bookmarks