Important Notice: Our web hosting provider recently started charging us for additional visits, which was unexpected. In response, we're seeking donations. Depending on the situation, we may explore different monetization options for our Community and Expert Contributors. It's crucial to provide more returns for their expertise and offer more Expert Validated Answers or AI Validated Answers. Learn more about our hosting issue here.

Why it is necessary to install CA certificates in the Microsoft CAPI certificate store?

ca CAPI Certificate certificates install Microsoft necessary store
0
Posted

Why it is necessary to install CA certificates in the Microsoft CAPI certificate store?

0 CommentsAdd a Comment

1 Answer

0

Installing root certificates into the Microsoft CAPI store serves two purposes. It allows Microsoft CAPI to successfully build certificate path to the root certificate, which is necessary for the initial handshake to succeed regardless of whether Webcullis is installed. Adding a root certificate to the store will also make it appear in the hint list send by IIS, ensuring that clients with credentials issued by that infrastructure will be offered the opportunity to present their certificate. When Webcullis is installed, this is safe because the final trust decision is made using the Webcullis trust store rather than the CAPI store.

0 CommentsAdd a Comment

Related Questions

What is your question?

*Sadly, we had to bring back ads too. Hopefully more targeted.

Experts123