Skip to content

            Lost ?  |  Need an account:
 
Home >> Knowledge Base >> Operating Systems >> Windows >> GPO Certificate Deployment - Configuring the GPO
  
GPO Certificate Deployment - Configuring the GPO PDF Print E-mail
(3 votes, average 5.00 out of 5)
Written by Tom Hirt   
Thursday, 23 April 2009 14:24
Article Index
GPO Certificate Deployment
Certificate Export
Configuring the GPO
All Pages
Page 3 of 3


Configuring the GPO

We will now define a new Group Policy Object (GPO) on an organizational unit (OU.)

  1. Logon to your domain controller as a domain administrator

  2. Run "dsa.msc" to open Active Directory Users and Computers

    Active Directory Users and Computers - dsa.msc

  3. Find a toplevel OU that contains the computer objects you wish to apply the GPO on.  Right click on the OU and select the "Properties" option

    Active Directory Users and Computers OU Properties

  4. Click the "Group Policy" tab from the OU properties window

    OU Properties

  5. Click the "New" button to create a new GPO

    New GPO

  6. Provide a meaningful name to your new GPO, and then click the "Edit" button

    New GPO

  7. Locate the "Trusted Root Certification Authorities" folder from the Group Policy Object Editor window

    GPO Trusted Authorities

    Computer Configuration -> Windows Settings -> Security Settings -> Public Key Policies -> Trusted Root Certification Authorities

  8. Right click on "Trusted Root Certification Authorities" and select the "Import" option

    GPO Trusted Authorities Import

  9. Click the "Next" button on the certificate import wizard screen

    Certificate Import Wizard

  10. Provide the location to the exported certicate from the previous section

    Certificate Import Wizard - File to Import

  11. Select the "Place all certificates in the following store" option and click "Next"

    Certificate Import Wizard - Place in Store

  12. Click "Finish" on the confirmation screen

    Certificate Import Wizard Confirmation

    Certificate Import Successful

  13. Exit the GPO editor and reboot (or perform a gpupdate) from one of the computers within the affected OU.  You should find the certificate has been installed in the browsers Trusted Root Certification Authorities.

    Trusted Authorities Internet Explorer

Nice work on installing the certificate!  From the computer you rebooted in step #13, you should be able to browse the website that had previously thrown a certificate error without reciving any warnings.  Good luck!

 

 


Add this page to your favorite website
AddThis Social Bookmark Button

<< Prev - Next

Comments
Add New Search
myname  - mo |15/07/2011 07:59:25
hola :roll:
Reply | Quote
Write comment
Name:
Email:
 
Website:
Title:
UBBCode:
[b] [i] [u] [url] [quote] [code] [img] 
 
 
:D:):(:0:shock::confused:8):lol::x:P:oops::cry::evil::twisted::roll::wink::!::?::idea::arrow:
 
Please input the anti-spam code that you can read in the image.

!joomlacomment 4.0 Copyright (C) 2009 Compojoom.com . All rights reserved."
Last Updated on Tuesday, 02 June 2009 10:46
 

Forum Activity

Согласен
Author: Cogterrit
May.18.12
Sell tablets more
Author: Cogterrit
May.18.12
Cigarettes Cheap O...
Author: Cogterrit
May.18.12
Buy tablets more
Author: Cogterrit
May.17.12
blue screen to con...
Author: boshudhadialler
May.17.12
strange text come ...
Author: boshudhadialler
May.17.12

New Additions

1.Configuring VMware vCenter with SQL Server
2.Red Hat Enterprise Linux Kernel Upgrade
3.How Do I: Import Text Files with SQL Server Integration Services?
4.How Do I: Using the HierarchyID Data Type in SQL Server 2008 to manage data hierarchies?
5.Ubuntu Kernel Upgrade Procedure

Online Stats

Guests Online: 83
Members Online: 0