I know if my client OS was Windows XP or better I could just use Active Directory. I would like to know how you deploy user certificates without the AD luxury.
0 Comments   [ + ] Show Comments

Comments

Please log in to comment

Rating comments in this legacy AppDeploy message board thread won't reorder them,
so that the conversation will remain readable.

Answers

0
Ok, I found a solution and well I'll post it here. Certmgr.exe will do the job but I had a really hard time finding decent documentation for the importing of certificates. So I will share what little I know about it.

certmgr -add -all certificate.cer -s -r currentUser TrustedPublisher

This will get a software vendor's certificate into the Trusted Publisher store to ensure that users are not given prompts to trust software from the vendor that uses the certificate. However on Windows 2000 I had to use trust instead of TrustedPublisher, localMachine instead of currentUser and capture some extra registry entries to get Internet Explorer 5.5 to use the Java aplet without user intervention. Also note that IE 5.5 uses a different version of certmgr than XP or IE6 for that matter. So here are some incomplete thoughts that might be helpful to someone.
Answered 08/05/2004 by: kkaminsk
Ninth Degree Black Belt

Please log in to comment
0
I should state that what I posted is not technically complete or necessarily 100% accurate. I had to hack and slash a solution out the door on a tight timeline. If someone wants to add more or correct me, please feel free to do so.
Answered 08/05/2004 by: kkaminsk
Ninth Degree Black Belt

Please log in to comment
0
many thanks!

[:)]
Answered 09/16/2005 by: dm1
Blue Belt

Please log in to comment
Answer this question or Comment on this question for clarity