Hem Tech Microsoft certificate stores
Aktuellt

Microsoft certificate stores

TEKNIK

Microsoft Certificate Stores – Var ligger egentligen certifikaten?

Var ligger egentligen certifikaten?

Nr. Logisk Plats (eng) Logisk Plats (sve)  Kommentar  
1. Personal Personliga Certificates associated with private keys to which you have access. These are the certificates that have been issued to you, or to the computer or service for which you are managing certificates.      
2.

Trusted Root Certification Authorities

Betrodda rotcertifikatutfärdare Implicitly trusted certification authorities. Includes all of the certificates in the Third-Party Root Certification Authorities store plus root certificates from your organization and Microsoft.

If you are an administrator and want to add third-party certification authority certificates to this store for all computers in a Windows 2000 Active Directory domain, you can use Group Policy to distribute trusted root certificates to your organization.

 
3.

Enterprise Trust

Förtroende för företag

A container for certificate trust lists. A certificate trust list provides a mechanism for trusting self-signed root certificates from other organizations and limiting the purposes for which these certificates are trusted.     
4.

Intermediate Certification Authorities

Mellanliggande certifikatutfärdare

Certificates issued to subordinate certification authorities.        
5.

Trusted Publishers

Betrodda utgivare

Certificates issued to people or end entities that are explicitly trusted. Most often these are self-signed certificates or certificates explicitly trusted in an application such as Microsoft Outlook.

 
6. Disallowed Certificates  

Icke betrodda certifikat

These are certificates that you have explicitly decided not to trust using either Software Restriction policy or by clicking "Do not trust this certificate" when the decision is presented to you in mail or a Web browser.     
7. Third-Party Root Certification Authorities

Tredjeparts rotcertifikatutfärdare

Trusted root certificates from certification authorities other than Microsoft and your organization.

 
8. Trusted people  

Betrodda personer

 Certificates issued to people or end entities that are explicitly trusted. Most often these are self-signed certificates or certificates explicitly trusted in an application such as Microsoft Outlook.  
9. Other people Andra personer Certificates issued to people or end entities that are implicitly trusted. These certificates must be part of a trusted certification hierarchy. Most often these are cached certificates for services like Encrypting File System, where certificates are used for creating authorization for decrypting an encrypted file.     

10.

Certificate Enrollment Requests.  

Begäranden om certifikatregistrering.

Pending or rejected certificate requests.     

11.

 

Smartkort, betrodda rotcertifikat.

         

12.

Active Directory User Object.     Certificates associated with your user object and published in Active Directory.     

När du tittar på innehållet i en certificate store i logical store-läge, kommer du ibland se vad som verkar vara två kopior av samma certifikat.

Det här inträffar eftersom certifikatet är lagrat i separata fysiska stores under en logical store, till exempel Registry och Enterprise under Trusted Root Certification Authorities.

När innehållet i de fysiska certificate stores kombineras i en logical store view visas båda instanserna av ett och samma certifikat.

Du kan verifiera detta genom att ställa in visningsalternativet till att visa de fysiska certificate stores och sedan notera att certifikatet är lagrat i separata fysiska stores under samma logical store. Du kan verifiera att det är samma certifikat genom att jämföra serienumren. http://support.microsoft.com/?id=293781

Med detta verktyg kan man botanisera bland olika "certificate stores".

Har du fler frågor? 

Tveka inte på att höra av dig till oss så hjälper vi dig.