Windows Server 2016: Group Policy settings to trust a self signed certificate
Windows Server 2016: Group Policy settings to trust a self signed certificate
1) [Server Manager] > Tools > Group Policy Management > Group Policy Management - Forest: widget.internal - Domains - (right-click) widget.internal > Create a GPO in this domain, and Link it here > New GPO - Name: WorkCertTrust > OK >
2) [Server Manager] > Tools > Group Policy Management > Group Policy Management - Forest: widget.internal - Domains - widget.internal - (right-click) WorkCertTrust > (x) Link Enabled | Edit
> Group Policy Management Editor - WorkCertTrust (DC2.WIDGET.INTERNAL) - Computer Configuration - Policies - Windows Settings - Security settings > (left-hand side) Public Key Policies - (right-click) Trusted Root Certification Authorities > Import > File to import - File name: \\DC2\NETLOGON\work.pfx > Private Key Protection - Password: xxx xxx | (x) Mark this key as exportable. this will allow you to backup or transport your keys at a later time | (x) Include all extended properties > Next > Certificate Store - (x) Place all certificates in the following store:- Certificate store: Trusted Root Certification Authorities > Finish >
// This is what you'll be seeing:-
Issued To: vmhost2.widget.internal
Issued By: vmhost2.widget.internal
Expiration Date: 11/22/2017
Intended Purposes: Server Authentication
Friendly Name: work.widget.internal
1) [Server Manager] > Tools > Group Policy Management > Group Policy Management - Forest: widget.internal - Domains - (right-click) widget.internal > Create a GPO in this domain, and Link it here > New GPO - Name: WorkCertTrust > OK >
2) [Server Manager] > Tools > Group Policy Management > Group Policy Management - Forest: widget.internal - Domains - widget.internal - (right-click) WorkCertTrust > (x) Link Enabled | Edit
> Group Policy Management Editor - WorkCertTrust (DC2.WIDGET.INTERNAL) - Computer Configuration - Policies - Windows Settings - Security settings > (left-hand side) Public Key Policies - (right-click) Trusted Root Certification Authorities > Import > File to import - File name: \\DC2\NETLOGON\work.pfx > Private Key Protection - Password: xxx xxx | (x) Mark this key as exportable. this will allow you to backup or transport your keys at a later time | (x) Include all extended properties > Next > Certificate Store - (x) Place all certificates in the following store:- Certificate store: Trusted Root Certification Authorities > Finish >
// This is what you'll be seeing:-
Issued To: vmhost2.widget.internal
Issued By: vmhost2.widget.internal
Expiration Date: 11/22/2017
Intended Purposes: Server Authentication
Friendly Name: work.widget.internal
Comments
Post a Comment