I've been tasked at my job to implement a security advisory from Microsoft (Microsoft Security Advisory 3050995
. Microsoft has updated the Certificate Trust list (CTL) to remove the trust of a subordinate CA certificate. Typically this is done automatically by installing a provided patch for Windows 2008 and windows 7 boxes. The problem I'm having is I'm not sure how to take these actions on a detached network without internet access. This network has its own Microsoft CA server that issues certificates. Any help or insight with this will be greatly appreciated. CA related matters are not my strong suit.