Microsoft Certificate Stores
Var ligger egentligen certifikaten?
|1||Personal||Personliga||Certificates associated with private keys to which you have access. These are the certificates that have been issued to you, or to the computer or service for which you are managing certificates.|
|2||Trusted Root Certification Authorities||Betrodda rotcertifikatutfärdare||Implicitly trusted certification authorities. Includes all of the certificates in the Third-Party Root Certification Authorities store plus root certificates from your organization and Microsoft.If you are an administrator and want to add third-party certification authority certificates to this store for all computers in a Windows 2000 Active Directory domain, you can use Group Policy to distribute trusted root certificates to your organization.|
|3||Enterprise Trust||Förtroende för företag||A container for certificate trust lists. A certificate trust list provides a mechanism for trusting self-signed root certificates from other organizations and limiting the purposes for which these certificates are trusted.|
|4||Intermediate Certification Authorities||Mellanliggande certifikatutfärdare||Certificates issued to subordinate certification authorities.|
|5||Trusted Publishers||Betrodda utgivare||Certificates issued to people or end entities that are explicitly trusted. Most often these are self-signed certificates or certificates explicitly trusted in an application such as Microsoft Outlook.|
|6||Disallowed Certificates||Icke betrodda certifikat||These are certificates that you have explicitly decided not to trust using either Software Restriction policy or by clicking “Do not trust this certificate” when the decision is presented to you in mail or a Web browser.|
|7||Third-Party Root Certification Authorities||Tredjeparts rotcertifikatutfärdare||Trusted root certificates from certification authorities other than Microsoft and your organization.|
|8||Trusted People||Betrodda personer||Certificates issued to people or end entities that are explicitly trusted. Most often these are self-signed certificates or certificates explicitly trusted in an application such as Microsoft Outlook.|
|9||Other People||Andra personer||Certificates issued to people or end entities that are implicitly trusted. These certificates must be part of a trusted certification hierarchy. Most often these are cached certificates for services like Encrypting File System, where certificates are used for creating authorization for decrypting an encrypted file.|
|10||Certificate Enrollment Requests||Begäranden om certifikatregistrering||Pending or rejected certificate requests.|
|11||Smartkort, betrodda rotcertifikat|
|12||Active Directory User Object||Certificates associated with your user object and published in Active Directory.|
When you look at the contents of a certificate store in Logical Store mode, you will occasionally see what appears to be two copies of the same certificate in the store. This occurs because the same certificate is stored in separate physical stores under a logical store, such as the Registry and Enterprise physical stores under the Trusted Root Certification Authorities logical store. When the contents of the physical certificates stores are combined into one logical store view, both instances of the same certificate are displayed.
You can verify this by setting the view option to show the physical certificate stores and then noting that the certificate is stored in separate physical stores under the same logical store. You can verify that it is the same certificate by comparing the serial numbers.
Med detta verktyg kan man botanisera bland olika “certificate stores”