Hero Banner

Products Discussions

Share best practices and get the latest Microsoft product info

Level 1 Contributor

Migration Certificate Authority to the target forest impact to S/MIME user from Source forest


We are on mids AD consolidation, and one of the components that we need to migrate is the Microsoft Certificate Authority. Currently, all mailboxes are sitting at the resource domain. We plan to create a new Issuing Certificate Authority at Target Domain but we are not sure if that will impact the previous email that S/MIME that the encrypted emails/files that the user used.

Please let me know if the users are still able to decrypt the old emails/files using the new Certificate Authority (the new CA server uses the same root certificate).

If the users are unable to read, any steps are require need to do?

Thanks and regards,