How to find certificates on the server that do not show up in MMC

Posted on 2016-09-09
Last Modified: 2016-09-14
I am in the process of upgrading SHA-1 certificates and some of the certificates do not show up in MMC. How can I find those certificates? Is there a way?
Question by:YZlat
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
LVL 17

Expert Comment

by:Emmanuel Adebayo
ID: 41791800
It seems you are looking at the wrong certificate store.

Check certificate stores for users, computers, and services.
LVL 35

Author Comment

ID: 41791900
The certificate owner told me they do not show up in MMC.  Do all the certificates show up there? What if certificate is simply copied into the application folder? How would I find it?
LVL 17

Accepted Solution

Learnctx earned 500 total points
ID: 41793122
You might be using an application which does not use the Windows central store. Java applications for example often use a Java keystore in the application directory. Some applications load certs and cert chains directly from a config path. If the cert is in a Java keystore, look for the keystore. Look for a .jks. If the certs are just floating about in a directory then look for the certificate. Look for .cer, .crt, .pem for individual certs. Look for p7b for chains in a Windows format. If it loads the private key from the file then look for a .pfx extension.

Generally speaking the application documentation should tell you where the certs should be stored or how you can customise the cert location.
LVL 35

Author Comment

ID: 41794993
Is there a way I can retrieve all those using Powershell?
LVL 17

Expert Comment

ID: 41795175
I don't know without more info. Talk to the cert owner for more info, it sounds like they should be able to elaborate on why it is not in the cert store. Maybe they know where?

Featured Post

Is your NGFW recommended by NSS Labs?

Ours is! NSS Labs Next Generation Firewall Test gives the WatchGuard Firebox M4600 a "Recommended" rating! Curious where your NGFW landed on the  Security Value Map? See the map and download the full report today!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Recently, Microsoft released a best-practice guide for securing Active Directory. It's a whopping 300+ pages long. Those of us tasked with securing our company’s databases and systems would, ideally, have time to devote to learning the ins and outs…
Ready for our next Course of the Month? Here's what's on tap for June.
Nobody understands Phishing better than an anti-spam company. That’s why we are providing Phishing Awareness Training to our customers. According to a report by Verizon, only 3% of targeted users report malicious emails to management. With compan…
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …
Suggested Courses

726 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question