Solved

Import trusted certificates

Posted on 2013-11-06
4
262 Views
Last Modified: 2013-12-09
Hi Everybody

Is there a quick way to import a group of certificates in to windows rather than to import them seperatly and click on browse and select “Show Physical Stores” and
select “Trusted Root Certification Authorities” -> “Local Computer”?

I need to be doing this on LOTS of 2008R2 servers.

Thanks
0
Comment
Question by:George-
  • 3
4 Comments
 
LVL 4

Expert Comment

by:Haslerct
ID: 39627046
Hi,

If all your server is joined to domain, then you can use GPO to do this:

To add a trusted root certification authority to a Group Policy object

1. Open the Group Policy object (GPO) that you want to edit.


2. In the console tree, click Trusted Root Certification Authorities.

¿Policy Object Name/Computer Configuration/Windows Settings/Security Settings/Public Key Policies/Trusted Root Certification Authorities



3. On the Action menu, point to All Tasks, and then click Import.

 This starts the Certificate Import Wizard, which guides you through the process of importing a root certificate and installing it as a trusted root certification authority (CA) for this GPO.


Details:
http://technet.microsoft.com/en-us/library/cc738131(v=ws.10).aspx
0
 
LVL 1

Author Comment

by:George-
ID: 39627053
Hi

It is going to be for many different domains so GPO will be more work than just importing them.

Fastest/easiest I have so far is to save a MMC for certs / Local cimputer and import/browse to them.
0
 
LVL 1

Accepted Solution

by:
George- earned 0 total points
ID: 39697762
Hi

Created a batch file and copied certmgr.exe with the certs.

@echo off
d:
cd\
cd cert
certmgr.exe -add -c *********.cer -s -r localMachine root
certmgr.exe -add -c /////////////.cer -s -r localMachine root
certmgr.exe -add -c ----------------.cer -s -r localMachine root
certmgr.exe -add -c ++++++++++.cer -s -r localMachine root
certmgr.exe -add -c """""""""""""".crt -s -r localMachine root

Thanks for your inputs.
0
 
LVL 1

Author Closing Comment

by:George-
ID: 39705751
Fixed myself
0

Featured Post

Are your AD admin tools letting you down?

Managing Active Directory can get complicated.  Often, the native tools for managing AD are just not up to the task.  The largest Active Directory installations in the world have relied on one tool to manage their day-to-day administration tasks: Hyena. Start your trial today.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Scenario:  You do full backups to a internal hard drive in either product (SBS or Server 2008).  All goes well for a very long time.  One day, backups begin to fail with a message that the disk is full.  Your disk contains many, many more backups th…
A safe way to clean winsxs folder from your windows server 2008 R2 editions
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles to another domain controller. Log onto the new domain controller with a user account t…
This Micro Tutorial hows how you can integrate  Mac OSX to a Windows Active Directory Domain. Apple has made it easy to allow users to bind their macs to a windows domain with relative ease. The following video show how to bind OSX Mavericks to …

910 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

19 Experts available now in Live!

Get 1:1 Help Now