Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people, just like you, are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
Solved

Import trusted certificates

Posted on 2013-11-06
4
272 Views
Last Modified: 2013-12-09
Hi Everybody

Is there a quick way to import a group of certificates in to windows rather than to import them seperatly and click on browse and select “Show Physical Stores” and
select “Trusted Root Certification Authorities” -> “Local Computer”?

I need to be doing this on LOTS of 2008R2 servers.

Thanks
0
Comment
Question by:George-
  • 3
4 Comments
 
LVL 4

Expert Comment

by:Haslerct
ID: 39627046
Hi,

If all your server is joined to domain, then you can use GPO to do this:

To add a trusted root certification authority to a Group Policy object

1. Open the Group Policy object (GPO) that you want to edit.


2. In the console tree, click Trusted Root Certification Authorities.

¿Policy Object Name/Computer Configuration/Windows Settings/Security Settings/Public Key Policies/Trusted Root Certification Authorities



3. On the Action menu, point to All Tasks, and then click Import.

 This starts the Certificate Import Wizard, which guides you through the process of importing a root certificate and installing it as a trusted root certification authority (CA) for this GPO.


Details:
http://technet.microsoft.com/en-us/library/cc738131(v=ws.10).aspx
0
 
LVL 1

Author Comment

by:George-
ID: 39627053
Hi

It is going to be for many different domains so GPO will be more work than just importing them.

Fastest/easiest I have so far is to save a MMC for certs / Local cimputer and import/browse to them.
0
 
LVL 1

Accepted Solution

by:
George- earned 0 total points
ID: 39697762
Hi

Created a batch file and copied certmgr.exe with the certs.

@echo off
d:
cd\
cd cert
certmgr.exe -add -c *********.cer -s -r localMachine root
certmgr.exe -add -c /////////////.cer -s -r localMachine root
certmgr.exe -add -c ----------------.cer -s -r localMachine root
certmgr.exe -add -c ++++++++++.cer -s -r localMachine root
certmgr.exe -add -c """""""""""""".crt -s -r localMachine root

Thanks for your inputs.
0
 
LVL 1

Author Closing Comment

by:George-
ID: 39705751
Fixed myself
0

Featured Post

Ransomware-A Revenue Bonanza for Service Providers

Ransomware – malware that gets on your customers’ computers, encrypts their data, and extorts a hefty ransom for the decryption keys – is a surging new threat.  The purpose of this eBook is to educate the reader about ransomware attacks.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

I had a question today where the user wanted to know how to delete an SSL Certificate, so I thought that I would quickly add this How to! Article for your reference. WHY WOULD YOU WANT TO DELETE A CERTIFICATE? 1. If an incorrect certificate was …
The recent Microsoft changes on update philosophy for Windows pre-10 and their impact on existing WSUS implementations.
This tutorial will walk an individual through locating and launching the BEUtility application to properly change the service account username and\or password in situation where it may be necessary or where the password has been inadvertently change…
This tutorial will walk an individual through the steps necessary to enable the VMware\Hyper-V licensed feature of Backup Exec 2012. In addition, how to add a VMware server and configure a backup job. The first step is to acquire the necessary licen…

840 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question