Table of Contents / Create the Root CA / Import the Root CA onto Client
-
From anywhere in the console type:
mmc.exeA Microsoft Management Console instance will start after you give it Administrator permissions.
-
Add the
CertificatesSnap-In- Go to
File>Add/Remove Snap-in... - Select
Certificates - Click
Add > - Select
Computer Account - Click
Next > - Select
Local computer - Click
Finish > - Click
OK
Note: you should now see the
CertificatesSnap-in under theConsole Rooton the left side of the window - Go to
-
Import the Root CA into
Trusted Root Certification Authorities- Expand the
Certificatesnode under theConsole Rootnode - Expand the
Trusted Root Certification Authoritiesnode under theCertificatesnode - Click on the
Certificatesnode under theTrusted Root Certification AuthoritiesnodeNote: you should now see all of the trusted root CAs on your computer
- Right-click on the
Certificatesnode under theTrusted Root Certification Authoritiesnode - Under
All TasksselectImport... - You should see the
Certificate Import Wizard, clickNext > - Click
Browse...and select your .pem file you created under the CA folder. (C:\Certificates\CA\public\rootca.cer)Note: you will need to change the File Type on the dialog to
All Files (\*.\*)to select a .pem file type - Click
Next > - Select
Place all certificates in the following storeand make sureTrusted Root Certification Authoritiesis selected - Click
Next > - Make sure everything is correct and select
FinishNote: you should get a dialog telling you that the import was successful.
- Expand the
You are now ready to begin using certificates that are in this chain of trust.
Next: Create the Intermediate Certificate for signing Server Certificates
or
Next: Create the Signing Certificate for signing Client Certificates
Table of Contents / Create the Root CA / Import the Root CA onto Client