Currently I have a 2003 DC which provides LDAPS authentication for our web application servers.
I knew the certificate would be expiring on July23/09 so I reissued a new cert on Jun 30/09. Deleted the old certificate and rebooted the server as I knew it would be caching the old certificate until a reboot occured.
When I came in this morning (July 23/09 – date of old certificate expiration) LDAPS connections were being refused.
I ended up rebooting the DC and then LDAPS connections started working.
Even though I deleted the old certificate and rebooted the server why would it still be cached and not be using the new cert and why the reboot on July23/09 cleaned it up and the previous one would not have?