In a scenario where we are forced to install from scratch a long time wearing SEMS working, either because it is wrong mounting procedures and identified the problem or because there is no backup or because it is identified that is working poorly with many errors, which would be the recommendation and best practice for this task ..?
I thought to avoid problems with the keys, export them all from:
Route 1: Consumers -> Users -> All Users -> Options -> Export Keys for All with the dilemma of public or keypair
Route 2: Keys -> Managed Keys -> Options -> Export All with the dilemma of public or keypair
I have no certainty which of the two routes is adequate
Then export the organization key and the ADK to install from scratch (is necessary the same version..?) then import the key organization, the ADK and finally import all the keys just do not know where is the best alternative.
The other element that concerns me is the SSL certificate, do I have to do with it ..?
and finally ... if I import the certificates would have to do a re-enrollment of the encryption desktop and desktop email ..?
Thank you very much.