Solved

Import trusted certificates

Posted on 2013-11-06
4
259 Views
Last Modified: 2013-12-09
Hi Everybody

Is there a quick way to import a group of certificates in to windows rather than to import them seperatly and click on browse and select “Show Physical Stores” and
select “Trusted Root Certification Authorities” -> “Local Computer”?

I need to be doing this on LOTS of 2008R2 servers.

Thanks
0
Comment
Question by:George-
  • 3
4 Comments
 
LVL 4

Expert Comment

by:Haslerct
Comment Utility
Hi,

If all your server is joined to domain, then you can use GPO to do this:

To add a trusted root certification authority to a Group Policy object

1. Open the Group Policy object (GPO) that you want to edit.


2. In the console tree, click Trusted Root Certification Authorities.

¿Policy Object Name/Computer Configuration/Windows Settings/Security Settings/Public Key Policies/Trusted Root Certification Authorities



3. On the Action menu, point to All Tasks, and then click Import.

 This starts the Certificate Import Wizard, which guides you through the process of importing a root certificate and installing it as a trusted root certification authority (CA) for this GPO.


Details:
http://technet.microsoft.com/en-us/library/cc738131(v=ws.10).aspx
0
 
LVL 1

Author Comment

by:George-
Comment Utility
Hi

It is going to be for many different domains so GPO will be more work than just importing them.

Fastest/easiest I have so far is to save a MMC for certs / Local cimputer and import/browse to them.
0
 
LVL 1

Accepted Solution

by:
George- earned 0 total points
Comment Utility
Hi

Created a batch file and copied certmgr.exe with the certs.

@echo off
d:
cd\
cd cert
certmgr.exe -add -c *********.cer -s -r localMachine root
certmgr.exe -add -c /////////////.cer -s -r localMachine root
certmgr.exe -add -c ----------------.cer -s -r localMachine root
certmgr.exe -add -c ++++++++++.cer -s -r localMachine root
certmgr.exe -add -c """""""""""""".crt -s -r localMachine root

Thanks for your inputs.
0
 
LVL 1

Author Closing Comment

by:George-
Comment Utility
Fixed myself
0

Featured Post

Free Trending Threat Insights Every Day

Enhance your security with threat intelligence from the web. Get trending threat insights on hackers, exploits, and suspicious IP addresses delivered to your inbox with our free Cyber Daily.

Join & Write a Comment

I have been working as System Administrators since 2003. I recently started working as a FreeLancer and was amazed to find out that very few people are taking full advantage of their Windows Server Machines. Microsoft Windows Server comes with so…
Redirected folders in a windows domain can be quite useful for a number of reasons, one of them being that with redirected application data, you can give users more seamless experience when logging into different workstations.  For example, if a use…
This tutorial will show how to push an installation of Backup Exec to an additional server in both 2012 and 2014 versions of the software. Click on the Backup Exec button in the upper left corner. From here, select Installation and Licensing, then I…
This tutorial will walk an individual through locating and launching the BEUtility application and how to execute it on the appropriate database. Log onto the server running the Backup Exec database. In a larger environment, this would generally be …

762 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

7 Experts available now in Live!

Get 1:1 Help Now