Your company has a single Active Directory directory service domain. You have a Stand-alone certification authority (CA). The URL for the CA# s certificate revocation list (CRL) Web server becomes invalid.

Users of certificates issued by the CA are unable to access the CRL. You need to ensure that all users can get certificates.

What should you do?

A.
Dep loy an Enterprise r oot CA and then issue new certificates through group policy .

B.
Revoke the original certificates and then deploy an Enterprise root CA.

C.
In the Certification Authority console, reissue the certificates, and change the CRL distribution point.

D.
In the Certification Authority console, revoke the original certificates, and change the CRL distribution point.