Trusted root certification authority policy

To establish a trusted root certification authority (CA) using Group Policy, the Group Policy object that you create must have access to the root certificate This requires that you import a copy of the root authority certificate.

You can do this by using the procedure Add a trusted root certification authority to a Group Policy object

For a root CA certificate to be imported, the root certificate must be in a PKCS #12 file, PKCS #7 file, or binary-encoded X.509v3 certificate files. For more information about these file formats, see Importing and exporting certificates 

For more information, see:

Policies to establish trust of root certification authorities 

Delete a trusted root certification authority from a Group Policy object 


Top of pageTop of page