import Windows 2008 certificates from new sister company in different forest
Posted on 2012-03-22
I need some guidance on how to import Windows 2008 certificates. My company is small and has a simple Win2008 R2 domain with a single root CA on Win2008 R2. We were just purchased by a large company with root and intermediate CA's, I think on Win2003 R2.
They have their own forest and I have my own forest, which are totally separate. First, we set up an MPLS dedicated T1 circuit between our two companies, and then we established a two-way domain trust. Now, we can see and access each other's servers across the MPLS.
Now, we want to trust each other's Windows certificates, but I'm not sure exactly how to do it. They have provided me with AcmeCorp.cer, AcmeCorpCA.p7b, AcmeCorp-Enterprise-CA.cer and AcmeCorp-IntermediateCA1.cer files.
I went into the Certificates MMC and see an Import option under Trusted Root Certification Autorities, Enterprise Trust, etc. But I'm not sure which certificate goes where, or if I'm even in the right place.