JC_IT
asked on
Microsoft Root Authority Certificate revoked
I have a Win10 (x86) 1803 PC that has the Microsoft Root Authority Certificate revoked. Any ideas on how to un-revoke or repair that?
ASKER
I previously did the root cert update "certutil -addstore -f root authroot.stl" but not the revoked certs.
I tried updating both again. I tried Windows Updates. That certificate is still listed as revoked.
I am leery of deleting that certificate and hoping it will be replaced.
I tried updating both again. I tried Windows Updates. That certificate is still listed as revoked.
I am leery of deleting that certificate and hoping it will be replaced.
Probably that is one means and should see any event viewer errors as this symptom may be signifying other matters.
Root certificates are updated on Windows automatically. When a system encounters a new root certificate, the Windows certificate chain verification software checks the appropriate Microsoft Update location for the root certificate.
If it finds it, it downloads it to the system. To the user, the experience is seamless. The user does not see any security dialog boxes or warnings. The download happens automatically, behind the scenes.
This all works well unless a server has been configured with Group Policy: Computer Configuration / Administrative Templates / System / Internet Communication Management / Internet Communication settings / Turn off Automatic Root Certificate Update as Enabled.
Root certificates are updated on Windows automatically. When a system encounters a new root certificate, the Windows certificate chain verification software checks the appropriate Microsoft Update location for the root certificate.
If it finds it, it downloads it to the system. To the user, the experience is seamless. The user does not see any security dialog boxes or warnings. The download happens automatically, behind the scenes.
This all works well unless a server has been configured with Group Policy: Computer Configuration / Administrative Templates / System / Internet Communication Management / Internet Communication settings / Turn off Automatic Root Certificate Update as Enabled.
This question needs an answer!
Become an EE member today
7 DAY FREE TRIALMembers can start a 7-Day Free trial then enjoy unlimited access to the platform.
View membership options
or
Learn why we charge membership fees
We get it - no one likes a content blocker. Take one extra minute and find out why we block content.
http://woshub.com/updating-trusted-root-certificates-in-windows-10/