If a certificate server is rebuilt and has radius re-installed can a backup of the original certificate be re-imported and used in the RADIUS authentication process (it has the extensions for Server and Client Authentaiction).

On Tue, 2 Nov 2010 10:14:54 +0000, Scottym wrote: If a certificate server is rebuilt and has radius re-installed can a backup of the original certificate be re-imported and used in the RADIUS authentication process (it has the extensions for Server and Client Authentaiction). That depends on what you mean by both "rebuilt" and "a backup of the original certificate". If by rebuilt you mean that the CA was rebuilt using the existing certificate and key pair then depending on what you mean by a "backup of the original certificate" the answer is a qualified yes. If you rebuilt the CA from scratch with a new certificate and key pair, then no. Eventually you'll have errors with the existing certificate for the RADIUS server as it won't be able to find a valid certificate revocation list. Does your backup of the original certificate for the RADIUS server include the private key? If so then again a qualified yes depending on how you rebuilt the CA. Frankly, since issuing a certificate for RADIUS auth is a trivial operation in your position I'd simply issue a new one and be done with it. Paul Adare MVP - Identity Lifecycle Manager http://www.identit.ca