Add the Root Certificate to Trusted Root Certification Authorities (2024)

Table of Contents
Procedure Results What to do next

If you use a certification authority (CA) to issue smart card login or domain controller certificates, you must add the root certificate to the Trusted Root Certification Authorities group policy in Active Directory. You do not need to perform this procedure if the Windows domain controller acts as the root CA.

See Also
About Microsoft Certificate StoresConfirm That Certificates Are Deployed CorrectlyHow To Check And Verify ConfigMgr SCCM Mixed Mode Certificate Details Endpoint Manager HTMD BlogPSD1170 – How to make JRE trust Windows Cert – PhenixID Support

See Also
Generate and export certificates for User VPN P2S connections: PowerShell - Azure Virtual WAN

Procedure

  1. On the Active Directory server, navigate to the Group Policy Management plug-in.
    AD Version Navigation Path
    Windows 2003
    1. Select Start > All Programs > Administrative Tools > Active Directory Users and Computers.
    2. Right-click your domain and click Properties.
    3. On the Group Policy tab, click Open to open the Group Policy Management plug-in.
    4. Right-click Default Domain Policy, and click Edit.
    Windows 2008
    1. Select Start > Administrative Tools > Group Policy Management.
    2. Expand your domain, right-click Default Domain Policy, and click Edit.
    Windows 2012R2
    1. Select Start > Administrative Tools > Group Policy Management.
    2. Expand your domain, right-click Default Domain Policy, and click Edit.
    Windows 2016
    1. Select Start > Administrative Tools > Group Policy Management.
    2. Expand your domain, right-click Default Domain Policy, and click Edit.
  2. Expand the Computer Configuration section and open Windows Settings\Security Settings\Public Key.
  3. Right-click Trusted Root Certification Authorities and select Import.
  4. Follow the prompts in the wizard to import the root certificate (for example, rootCA.cer) and click OK.
  5. Close the Group Policy window.

Results

All of the systems in the domain now have a copy of the root certificate in their trusted root store.

What to do next

If an intermediate certification authority (CA) issues your smart card login or domain controller certificates, add the intermediate certificate to the Intermediate Certification Authorities group policy in Active Directory. See Add an Intermediate Certificate to Intermediate Certification Authorities.

Add the Root Certificate to Trusted Root Certification Authorities (2024)
Top Articles
Nessfx Review Review 2024 - Is Legit or Scam | Forexing.com
How To Avoid Paying UPS Brokerage Fees in Canada - Self Clearance Instructions
Taylor Swift, Dublin night 2 review: Fans star as Eras tour lights up the Aviva
Where to Buy Cool Wazoo: Your Ultimate Guide to Snagging the Best Deals - Shark Tank (2024 Update)
Etty Ausch Custody Update 2022
TechPowerUp GPU-Z - Download
Looking Back at r/Place
A Installing R and RStudio | Hands-On Programming with R
Stanford Searchable Map
At least 4 people were bitten in shark attacks in Texas and Florida since the Fourth of July | CNN
Matt Rife Faces Backlash Over His 'Insane' Response To People Offended By Netflix Special Joke
The Stunning Transformation Of Comedian Matt Rife - Nicki Swift
Latest Posts
Top 10 Leading FinTech Companies in India
Avoid Overspending By Following The Rule Of Half | Mad Money Monster
Article information

Author: Zonia Mosciski DO

Last Updated:

Views: 5651

Rating: 4 / 5 (51 voted)

Reviews: 90% of readers found this page helpful

Author information

Name: Zonia Mosciski DO

Birthday: 1996-05-16

Address: Suite 228 919 Deana Ford, Lake Meridithberg, NE 60017-4257

Phone: +2613987384138

Job: Chief Retail Officer

Hobby: Tai chi, Dowsing, Poi, Letterboxing, Watching movies, Video gaming, Singing

Introduction: My name is Zonia Mosciski DO, I am a enchanting, joyous, lovely, successful, hilarious, tender, outstanding person who loves writing and wants to share my knowledge and understanding with you.