Lost root ca admin password

[ronfitz1]

If anyone can help, here is the situation:

The person who set up our CA has left the company with the password to access 127.0.0.1/certsrv. I cannot find anything about password recovery for that.

Does anyone know of a way to reset that password or a backdoor to get in?

Thanks in advance.

 

[TheMisio]

ronfitz1,

An Enterprise Admin should be able to do it. Domain Admin isn't enough when it comes to CA.

Regards,

 

[ronfitz1]

Thank you for the reply. Do you know the procedure for resetting this password?


Again, thank you.

 

[TheMisio]

ronfitz1,

what error are you getting when trying to connect to it?
Remember that this is just a website, so reviewing IIS settigns may also be helpfull. Did you look at the permissions on the website in IIS?

Regards,

 

[ronfitz1]

When you browse to 127.0.0.1/certsrv, you are prompted for a login/password. I believe the login is Administrator but no one has the password. That password is setup when installing the CA and I don't think it is in AD.

Thanks.

 

[TheMisio]

ronfitz1,

Log on to the server, go to IIS > Websites > Default Website > right click on certsrv > permissions. Check what's there. If you're loged on as admin, try taking ownership of it.
Alternatively, just for the sake of the exercise allow anonymous log ons to this website and restart IIS.

Regards,

 

[ronfitz1]

I will try. Thanks again.