Solved

How to find certificates on the server that do not show up in MMC

Posted on 2016-09-09
5
77 Views
Last Modified: 2016-09-14
I am in the process of upgrading SHA-1 certificates and some of the certificates do not show up in MMC. How can I find those certificates? Is there a way?
0
Comment
Question by:YZlat
  • 2
  • 2
5 Comments
 
LVL 17

Expert Comment

by:Emmanuel Adebayo
ID: 41791800
It seems you are looking at the wrong certificate store.

Check certificate stores for users, computers, and services.
0
 
LVL 35

Author Comment

by:YZlat
ID: 41791900
The certificate owner told me they do not show up in MMC.  Do all the certificates show up there? What if certificate is simply copied into the application folder? How would I find it?
0
 
LVL 17

Accepted Solution

by:
Learnctx earned 500 total points
ID: 41793122
You might be using an application which does not use the Windows central store. Java applications for example often use a Java keystore in the application directory. Some applications load certs and cert chains directly from a config path. If the cert is in a Java keystore, look for the keystore. Look for a .jks. If the certs are just floating about in a directory then look for the certificate. Look for .cer, .crt, .pem for individual certs. Look for p7b for chains in a Windows format. If it loads the private key from the file then look for a .pfx extension.

Generally speaking the application documentation should tell you where the certs should be stored or how you can customise the cert location.
0
 
LVL 35

Author Comment

by:YZlat
ID: 41794993
Is there a way I can retrieve all those using Powershell?
0
 
LVL 17

Expert Comment

by:Learnctx
ID: 41795175
I don't know without more info. Talk to the cert owner for more info, it sounds like they should be able to elaborate on why it is not in the cert store. Maybe they know where?
0

Featured Post

Free Tool: Postgres Monitoring System

A PHP and Perl based system to collect and display usage statistics from PostgreSQL databases.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article describes my battle tested process for setting up delegation. I use this process anywhere that I need to setup delegation. In the article I will show how it applies to Active Directory
Many businesses neglect disaster recovery and treat it as an after-thought. I can tell you first hand that data will be lost, hard drives die, servers will be hacked, and careless (or malicious) employees can ruin your data.
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, Just open a new email message.  In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …

685 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question