Managing approved root certificates under Windows 10/8



Updated December 2024: Stop getting error messages and slow down your system with our optimization tool. Get it now at this link
  1. Download and install the repair tool here.
  2. Let it scan your computer.
  3. The tool will then repair your computer.

In one of our previous contributions, we saw what root certificates are. Some companies or users may feel the need to manage and configure trusted root certificates to prevent other domain users from configuring their own game. This article shows how to manage trusted root certificates and add certificates to the Trusted Root Certification Authorities Store in Windows 10/8.1.

Manage trusted root certificates in Windows

December 2024 Update:

You can now prevent PC problems by using this tool, such as protecting you against file loss and malware. Additionally, it is a great way to optimize your computer for maximum performance. The program fixes common errors that might occur on Windows systems with ease - no need for hours of troubleshooting when you have the perfect solution at your fingertips:

  • Step 1 : Download PC Repair & Optimizer Tool (Windows 10, 8, 7, XP, Vista – Microsoft Gold Certified).
  • Step 2 : Click “Start Scan” to find Windows registry issues that could be causing PC problems.
  • Step 3 : Click “Repair All” to fix all issues.

Download Now

Click the File link and select Add/Remove Snap-In. Under Available Snap-ins, click Certificates, and then click Add.

Click OK. In the next dialog box , select Computer account, then select Next.

Now select Local Computer and click Finish.

In the MMC, double-click Certificates in the console tree, then right-click Trusted Root Certification Authorities Store. Under All Tasks, select Import.

The Certificate Import Wizard opens.

Follow the wizard to complete the operation.

Let’s see how to configure and manage trusted root certificates for one local computer. Open the MMC and click the File menu link and select Add/Remove Snap-In. Under Available Snap-ins, click Group Policy Object Editor, then click Add. Select the computer whose local GPO you want to edit and click Finish / OK.

In the MMC console tree, go back to Local Computer Policy > Computer Configuration > Windows Settings > Security Settings. Next Public Key Policies. Double-click Certificate Path Validation Settings and select the Storage tab.

Check the boxes here Set these policy parameters, Allow trusted root certificates to be used by users to validate certificates and Allow users to trust trusted certificates of their counterparts.

Finally, under Root Certificate Store, select the root certificates that client computers can trust, and click OK.

How to manage trusted root certificates for a domain and how to add certificates to the trusted root certification authorities store for a domain, see Technet.

RCC is a free root certificate scanner that can help you scan Windows root certificates for unreliable certificates.



Expert Tip: This repair tool scans the repositories and replaces corrupt or missing files if none of these methods have worked. It works well in most cases where the problem is due to system corruption. This tool will also optimize your system to maximize performance. It can be downloaded by Clicking Here

Related Video

Scroll to Top