Creating a new CA instead of migrating 2003 x86 -> 2008R2 x64
I have an inordinate number of tabs open at the moment about migrating a certificate authority from an x86 2003 DC to an x64 2008R2 DC with a different name and they all look, well, involved. Anything involving registry edits on a domain controller makes me think that maybe there's an easier way.
Looking at my existing CA, the only certificates currently valid are for the SSL connection on our ePortal page - easy enough to redo with new certificates. There's no EFS certificates, no connection certificates, nothing else special.
Am I better off just destroying the existing CA and setting a new one up?