![]() ![]() The SST file I obtained through above steps also had 343 root CA certificates, some of which are shown below. sst extension is configured to be opened by some other software on your machine, you can execute the following in the same command prompt: start explorer.exe roots.sst double-clicking the generated roots.sst file should open it in certmgr.msc.execute: certutil -generateSSTFromWU roots.sst.launch a Windows command prompt and browse to some folder where you want to generate the SST file.Looking further into this I then followed below steps (taken from a comment left in above article) to generate an SST (Microsoft serialized certificate store) file with trusted root CA certificates from a Windows Update server: ![]() This is definitely lot more than the 36 that I currently have in the Trusted Root Certification Authorities store under my user account. On my Windows 7 machine, the "CTLInfo.exe" tool (provided by the author of that article) listed an output of 343 root CA certificates. ![]() Based on information on this page, Windows actually trusts many more root CA certificates than what are displayed when a user launches certmgr.msc and navigates to Trusted Root Certification Authorities > Certificates.Īccording to the article, the actual trusted root CA certificates are not only those that are shown to the user in certmgr.msc but all those in the Certificate Trust List maintained by Windows on the local machine. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |