Hi All ,

In my current environment we have installed a enterprise root CA role on window server 2003 DC in forest A .

Recently we have build a new forest that is forest B and then we have started to migrate the resources from forest A to forest B .Till date we have moved all the member servers , client computers ,exchange to forest B except SCCM servers and CA role.

Below is the technet article which i have found that cross forest migration for CA role is not supported .We are ready to do a re-deployment of CA role on forest B .

https://technet.microsoft.com/en-us/library/cc742466(WS.10).aspx

So after re-deployment CA role in forest B do we need to re issue the new certificates to the offline IBCM server and IBCM clients ? why i am asking is , already here we have issued certificates to 3000 offline client PC'S from our old CA server in forest A .

Please tell me the possible ways to overcome this scenario .All of your suggestions are much apprec