How to manage Trusted Root Certificates in Windows 11/10

Download PC Repair Tool to quickly find & gear up Windows errors automatically

In one of our earlier posts, we have seen what Root Certificates are. There may exist times, when some companies or users may feel the need to manage and configure Trusted Root Certificates, to prevent other users in the domain from configuring their own set. In this post, nosotros will see how to manage Trusted Root Certificates & add certificates to the Trusted Root Certification Authorities store in Windows 11/10/viii/vii.

Manage Trusted Root Certificates in Windows 11/10

To add certificates to the Trusted Root Certification Authorities shop for a local estimator, from the WinX Carte du jour in Windows 11/10/8.1, open up Run box, type mmc, and hit Enter to open up the Microsoft Management Control.

Press the File menu link and select Add/Remove Snap-in. Now under Available snap-ins, click Certificates, and and then click Add.

Click OK. In the next dialog box, select Computer business relationship then on Side by side.

Now select Local estimator and click on Finish.

Now, back in MMC, in the console tree, double-click on Certificates and then right-click on Trusted Root Certification Government Store. Nether All tasks, select Import.

The Certificate Import Wizard will open.

Follow the instructions in the sorcerer to complete the procedure.

Now let us come across how to configure and manage trusted root certificates for a local estimator. Open MMC and press the File menu link and select Add/Remove Snap-in. Now nether Available snap-ins, click Grouping Policy Object Editor, and then click Add together. Select the computer whose local GPO you want to edit, and click End / OK.

Now, back in the MMC console tree, navigate to Local Computer Policy > Computer Configuration > Windows Settings > Security Settings. Next Public Key Policies. Double-click Certificate Path Validation Settings, and and so select the Stores tab.

Read: Manage certificates using Certificate Manager or Certmgr.msc.

Here, select the Ascertain these policy settings, Allow user trusted root CAs to be used to validate certificates and Allow users to trust peer trust certificates checkboxes.

Finally, nether Stores tab > Root certificate stores, select one pick under Root CAs that the customer computers can trust and click OK. If in dubiousness, go with the recommended selection.

To encounter how you can manage trusted root certificates for a domain and how to add together certificates to the Trusted Root Certification Authorities store for a domain, visit Technet.

RCC is a gratuitous Root Certificates Scanner that tin help you scan Windows Root Certificates for untrusted ones.

Anand Khanse is the Admin of TheWindowsClub.com, a ten-year Microsoft MVP (2006-16) & a Windows Insider MVP. Please read the unabridged post & the comments first, create a Organisation Restore Signal earlier making any changes to your arrangement & be careful near any 3rd-political party offers while installing freeware.