Export (0) Print
Expand All

Install the certificate of the enterprise root CA as a trusted root CA certificate

Updated: January 21, 2005

Applies To: Windows Server 2003, Windows Server 2003 R2, Windows Server 2003 with SP1, Windows Server 2003 with SP2

To install the certificate of the enterprise root CA as a trusted root CA certificate

  1. Open Active Directory Users and Computers.

  2. In the console tree, double-click Active Directory Users and Computers, right-click the domain name in which your CA lives, and then click Properties.

  3. On the Group Policy tab, click Default Domain Policy, and then click Edit.

  4. In the console tree, right-click Trusted Root Certification Authorities, point to All Tasks, and then click Import.

    Where?

    • Computer Configuration/Windows Settings/Security Settings/Public Key Policies/Trusted Root Certification Authorities

    The Certificate Manager Import wizard appears.

  5. Click Next, and follow the instructions in the wizard to import the .crt file of the CA (located in the systemroot\System32\CertSrv\CertEnroll folder) into the Trusted Root Certification Authorities store.

  6. Type the following at the command prompt:

    gpupdate /Target:{Computer | User} /Force

Notes

  • To open Active Directory Users and Computers, click Start, click Control Panel, double-click Administrative Tools, and then double-click Active Directory Users and Computers.

  • To open a command prompt, click Start, point to All programs, point to Accessories, and then click Command prompt.

Information about functional differences

  • Your server might function differently based on the version and edition of the operating system that is installed, your account permissions, and your menu settings. For more information, see Viewing Help on the Web.

See Also

Was this page helpful?
(1500 characters remaining)
Thank you for your feedback

Community Additions

ADD
Show:
© 2014 Microsoft