[2 days left] What’s wrong with your cloud strategy? Learn why multicloud solutions matter with Nimble Storage.Register Now

x
?
Solved

How to find certificates on the server that do not show up in MMC

Posted on 2016-09-09
5
Medium Priority
?
85 Views
Last Modified: 2016-09-14
I am in the process of upgrading SHA-1 certificates and some of the certificates do not show up in MMC. How can I find those certificates? Is there a way?
0
Comment
Question by:YZlat
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
5 Comments
 
LVL 18

Expert Comment

by:Emmanuel Adebayo
ID: 41791800
It seems you are looking at the wrong certificate store.

Check certificate stores for users, computers, and services.
0
 
LVL 35

Author Comment

by:YZlat
ID: 41791900
The certificate owner told me they do not show up in MMC.  Do all the certificates show up there? What if certificate is simply copied into the application folder? How would I find it?
0
 
LVL 18

Accepted Solution

by:
Learnctx earned 2000 total points
ID: 41793122
You might be using an application which does not use the Windows central store. Java applications for example often use a Java keystore in the application directory. Some applications load certs and cert chains directly from a config path. If the cert is in a Java keystore, look for the keystore. Look for a .jks. If the certs are just floating about in a directory then look for the certificate. Look for .cer, .crt, .pem for individual certs. Look for p7b for chains in a Windows format. If it loads the private key from the file then look for a .pfx extension.

Generally speaking the application documentation should tell you where the certs should be stored or how you can customise the cert location.
0
 
LVL 35

Author Comment

by:YZlat
ID: 41794993
Is there a way I can retrieve all those using Powershell?
0
 
LVL 18

Expert Comment

by:Learnctx
ID: 41795175
I don't know without more info. Talk to the cert owner for more info, it sounds like they should be able to elaborate on why it is not in the cert store. Maybe they know where?
0

Featured Post

Are You Ready for GDPR?

With the GDPR deadline set for May 25, 2018, many organizations are ill-prepared due to uncertainty about the criteria for compliance. According to a recent WatchGuard survey, a staggering 37% of respondents don't even know if their organization needs to comply with GDPR. Do you?

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

A bad practice commonly found during an account life cycle is to set its password to an initial, insecure password. The Password Reset Tool was developed to make the password reset process easier and more secure.
I don't pretend to be an expert at this, but I have found a few things that are useful. I hope that sharing them here will help others, so they will not have to face some rather hard choices. Since I felt this to be a topic of enough importance and…
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, Just open a new email message.  In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…
Sometimes it takes a new vantage point, apart from our everyday security practices, to truly see our Active Directory (AD) vulnerabilities. We get used to implementing the same techniques and checking the same areas for a breach. This pattern can re…

649 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question