Note
Access to this page requires authorization. You can try signing in or changing directories.
Access to this page requires authorization. You can try changing directories.
Tuesday, April 22, 2014 10:22 AM
Hi.
I migrated from Windows Server 2008 CA's to W20012R2.
On old offline intermediate I just install to automatic lotaion Root's CRL.
But on W20012R2. It did not worked, because I did not see new CRl under Computer certicate store-> Trusted root->CRL
Offline CA started only when I Manualy change CRL install wizard location.
Does this changed, where CRL gets imported when right-clicked Install is used?
Wednesday, April 23, 2014 6:06 AM ✅Answered
It should work the same. What command did you use to publish the CRL locally? Using the command line to import the CRL is a much more consistent method to do the publishing.
Certutil -addstore -f Root <CRL FILE NAME>
Wednesday, April 23, 2014 6:25 AM
Hi
All the time I used right click and Install CRL. And it was working on W2008.
If it is not supported anymore I will use
certutil -addstore -f Root my.crl
Wednesday, April 23, 2014 4:28 PM
I rarely use the GUI to do this stuff due to the uncertainty of where the installation goes. Its possible it will go into the user context if the account doesn't have admin rights, etc... The command line is much more concise and if it doesn't work, you'll get an error. You can also use the same command to install the offline root CA certificate to the local Trusted Root CA store as well.