PKI - Import Root CA Certificate on Windows Systems


This article is intended for Windows 7, 2008 Server, and 2012 Server.  There are small changes between the Windows versions, but the overall steps are the same.

Import CA Certificate

The root Certificate Authority(CA) for LSU is Comodo, and it is identified by the Issuer, AddTrust External CA Root.  This certificate is required to validate LSU’s SSL certificates, and most systems should already have this certificate installed.


Verify Certificate

1. Launch Certificates Manager with administrator privilege.  If you are unsure how to do this, see GROK article 16561 for detailed instructions on how to launch with administrator privilege.

2.  In Certificates Manager, expand Certificates (Local Computer), then expand Trusted Root Certification Authority, and click on Certificates.  

3. You should see AddTrust External CA Root in the list of installed root certificates.

AddTrust External CA Root highlighted at the top


Import Certificate

1. Download the root certificate: https://pki.its.lsu.edu/root_ca.cer.

2. Save the file root_ca.cer in a place accessible by your computer.

3. Right-click on Certificates under Trusted Root Certification Authority, then go to All task -> Import...

Certificates folder at the left, with All Tasks selected from its right click context menu, with Import option highlighted


4.  Click Next on the Welcome screen, then click the Browse... button.  Browse to the location that you had saved root_ca.cer earlier, then click Open.  Click Next

Certificate Import Wizard; Browse button and Next button are highlighted.


5.  Take the default save location on this screen and click Next.

Place all certificates in the following store: Trusted Root Certification Authorities is selected


6. Click Finish.

Certificate Store Selected by User

 

Referenced from: StartSSL

16562
2/19/2019 7:10:57 AM