Hello, our system was using a certificate from a third-party CA that needed to be renewed. I created a CSR from the certificate and key, I replaced the certificate with the new one ( I also had to replace the CA certificate-chain). restarted the apache server but could no longer authenticate to our AD. I ran engine-setup, restarted the engine and also reinstalled the ROOTCA of our AD in the keystore. I got the system running but is there a documented procedure for updating 3rd-party certificates when authenticating to AD. Thanks, Paul S.