I am in the process of testing and eventually deploying CS for my Active Directory domain. The certs will only be used for securing communications between web servers and clients (probably only about 15-20 certs). My environment is such that we have two domains that have a two-way trust relationship. All user account reside in the domain where we plan on deploying CS. However, the other domain does have servers that are accessed for web services, sql, etc. My question is this - if I setup the AD/CS in the user accoutn domain, will the certs be valid for the other trusted domain. Also, most docs that I have seen list Server 2008 R2 for setup. The two domains in my environment are Server 2008 (not R2). The plan is to set this up on a member server(s). If they are R2, will this be supported or will they need to be 2008 (non-R2) only?wjk