Re: Backup and restore Certificate templates

[Paul Adare]

On Mon, 2 Mar 2009 19:43:01 -0800, Gunna wrote:

> Hi, I read this "backup and restore your certificate
> templates this can be easily accomplished with an LDIF dump of Public
> Key Services\Certificate Templates and Public Key Services\OID"
> when lokoing for a way to backup my templates and take them over to a
> disconnected lab. Can anyone tell me if OID is the right key to export?
> There is one called Certificate Templates with the templates in in I would
> have thought you export that one?
> Anyone offer some assistance?

You would need both containers. Each certificate template will have one or
more OIDs associated with it.

--
Paul Adare
MVP - Identity Lifecycle Manager
http://www.identit.ca

[Gunna]

Makes sense. Just those 2 containers only?

[Paul Adare]

On Tue, 3 Mar 2009 06:00:01 -0800, Gunna wrote:

> Makes sense. Just those 2 containers only?

Yes, but unless you're restoring them to the same AD infrastructure, you're
likely going wind up with weird results and problems.

[Gunna]

Yep already thought of that. Not a problem.

[Gunna]

Totally understand what your saying and appreciate the help. This is only so
i can replicate all the custom templates in a lab environment so this wont be
used for production purposes.

Cheers.

"Brian Komar (MVP)" wrote:

> To add further input, this is going down a bad, unsupported path.
> The OID assigned to a certificate template (on creation) is an OID specific
> to that forest (based on the MS arc 1.3.6.1.4.1.311.lots....)
> It is not supported to use LDIF to export certificate templates from one
> forest and import the certificate templates (and OIDs) into another forest.
> Brian
>
> "Paul Adare" <pka...@gmail.com> wrote in message
> news:169zec66qpqo9.6...@40tude.net...