We had the idea to use SolarWinds to serve as another layer of security for our RootCA's (Unsigned of course). We created a server on a secluded area of our VMware ESX environment to house the certificate. Created a monitor to check and notify us all should the server ever reach powered on state so that we could react accordingly. Anyone have any other ideas for securing their unsigned root ca's, please share.?