Turning off security alerts during Root CA Certificate Import

#1 01-05-2006, 05:04 AM

Hi all,

I need to move a copy of a CA Root certificate from the Local Machine Store
to the Current User store during user logon (at least the first time the user
logs on). I have written a VBScript using CAPICOM to do this, it seems to
work, but the user is given a "Security Warning" because the root CA cannot
be verified (I created a self-signed root certificate and an operational CA
certificate using MS Certification Authority).

This warning is somewhat annoying, and since it gives the user the choice
not to Import the Certificates, it can be quite dangerous (if the user
chooses not to import, then the whole VPN config will fail).

Is there a way to avoid getting this message, either forcing the import of
the CA certificates or doing away compeltely with the "Security Warning"
messages during logon?

Thanks,
RB

#2 01-05-2006, 05:05 AM

Couldn't you import the certificate into a profile and then copy that
profile as the Default User profile? Don't know if it would work but it
might.

"GoldenEyes" <GoldenEyes@discussions.microsoft.com> wrote in message
news:F1183B7E-4263-4D58-B90C-EFF3132FE399@microsoft.com...
> Hi all,
>
> I need to move a copy of a CA Root certificate from the Local Machine
> Store
> to the Current User store during user logon (at least the first time the
> user
> logs on). I have written a VBScript using CAPICOM to do this, it seems to
> work, but the user is given a "Security Warning" because the root CA
> cannot
> be verified (I created a self-signed root certificate and an operational
> CA
> certificate using MS Certification Authority).
>
> This warning is somewhat annoying, and since it gives the user the choice
> not to Import the Certificates, it can be quite dangerous (if the user
> chooses not to import, then the whole VPN config will fail).
>
> Is there a way to avoid getting this message, either forcing the import of
> the CA certificates or doing away compeltely with the "Security Warning"
> messages during logon?
>
> Thanks,
> RB

#3 01-05-2006, 05:05 AM

If you are in an Active Directory domain you can use Group Policy/user
configuration/Windows settings/security settings/public key policies to add
certificates that the user will trust. --- Steve

"GoldenEyes" <GoldenEyes@discussions.microsoft.com> wrote in message
news:F1183B7E-4263-4D58-B90C-EFF3132FE399@microsoft.com...
> Hi all,
>
> I need to move a copy of a CA Root certificate from the Local Machine
> Store
> to the Current User store during user logon (at least the first time the
> user
> logs on). I have written a VBScript using CAPICOM to do this, it seems to
> work, but the user is given a "Security Warning" because the root CA
> cannot
> be verified (I created a self-signed root certificate and an operational
> CA
> certificate using MS Certification Authority).
>
> This warning is somewhat annoying, and since it gives the user the choice
> not to Import the Certificates, it can be quite dangerous (if the user
> chooses not to import, then the whole VPN config will fail).
>
> Is there a way to avoid getting this message, either forcing the import of
> the CA certificates or doing away compeltely with the "Security Warning"
> messages during logon?
>
> Thanks,
> RB

Thread Tools	Search this Thread
Show Printable Version Email this Page	Search this Thread: Advanced Search
Display Modes
Linear Mode Switch to Hybrid Mode Switch to Threaded Mode

Similar Threads
Thread	Thread Starter	Forum	Replies	Last Post
RE: Root Certificate Update?	Joan M.	Windows Update	1	01-05-2006 05:09 PM
Re: Downloaded files don't install	Alias	Windows Update	13	01-05-2006 05:05 PM
Windoes update failure	Dennis	Windows XP Perform Maintain	2	01-05-2006 06:02 AM
Installing Security updates for Windows XP fail	techhelper1010	Windows XP Perform Maintain	0	01-05-2006 05:58 AM
Long delay before Drives & Files appear in My Computer & Address Bar	shizzlenizzlator@gmail.com	Windows XP Help and Support	3	01-05-2006 02:44 AM