whatever was using those certs before, we don't know.
But you may have some ancillary service in your environment that breaks. Active Directory doesn't require certificates to be able to log in to the domain under a typical configuration.
So the certificates could be used to establish machine-to-machine SSL/TLS connections.įor instance, one example of how the Workstation Authentication certificates might have been used is for client authentication with SCCM, so that SCCM knows it's talking to the right client. Both of these cert templates offer computer authentication. The Workstation Authentication template is very similar to the Computer certificate template, though. Kerberos doesn't use SSL/TLS certificates.**Īn administrator may choose to use a given certificate template for any number of different things, so I'd say it's impossible for us to know right now what exactly those certificates were being used for in your environment.
What are the Workstation Certificates used for? Kerberos?.
