Monday, May 18, 2009

[THIN] Re: how to prepopulate IE with site certs?

You can push out with a PSEXEC script and use a little know Microsoft tool called certmgr.exe. Let me know if you need a copy of it.

 

certmgr.exe -add -c my-root-cert.cer -s -r localMachine root

 

Cheers,

Jeremy.

 

From: thin-bounce@freelists.org [mailto:thin-bounce@freelists.org] On Behalf Of Steve Snyder
Sent: Tuesday, May 19, 2009 10:29 AM
To: thin@freelists.org
Subject: [THIN] Re: how to prepopulate IE with site certs?

 

workgroup - setting up a public IE kiosk

tried gpedit, user/ie maint/security/authenticode and import current - doesn't seem to help. have the latest dod root certs installed too.

On Tue, May 19, 2009 at 1:43 PM, Greg Reese <gareese@gmail.com> wrote:

group policy is your friend.

On Mon, May 18, 2009 at 2:50 PM, Steve Snyder <kwajalein@gmail.com> wrote:

The Dod, God bless them, isn't a trusted certificate authority according to IE. Yes the user can accept the cert against IE's recommendation, but I'd rather just pre-install the certs as trusted for the user. Any clues how I do this?

 

 


Confidentiality and Privilege Notice
This document is intended solely for the named addressee.  The information contained in the pages is confidential and contains legally privileged information. If you are not the addressee indicated in this message (or responsible for delivery of the message to such person), you may not copy or deliver this message to anyone, and you should destroy this message and kindly notify the sender by reply email. Confidentiality and legal privilege are not waived or lost by reason of mistaken delivery to you.

No comments: