title | description | ms.assetid |
---|---|---|
Installing the trusted root certificate |
Installing a trusted root certificate is necessary only if you are notified that the certificate of authority is not trusted on any machine. |
c96be8c9-4498-4cfa-82c4-44e1e396ec3f |
Applies to: Lync Server 2013 | Skype for Business 2015
Installing a trusted root certificate is necessary only if you are notified that the certificate of authority is not trusted on any machine. This can occur when you use a private or custom certificate server instead of acquiring certificates from an established public certificate of authority.
-
On the machine that requires a certificate, in your web browser, navigate to your local certification server. This should be the same certificate of authority used for generating the server and, optionally, client certificates.
-
Choose Download a CA certificate, certificate chain, or CRL link, as needed.
-
Select the appropriate certificate of authority from the list and choose the Base 64 Encoding method.
-
Choose the Download CA certificate link and then choose Open option when prompted to open or save the certificate.
-
When the certificate window opens, choose Install Certificate…. The Certificate Import wizard appears.
-
In the wizard, choose Next. Then, when you are prompted for the Certificate Store, choose Place all certificates in the following store. Select the Trusted Root Certification Authorities store.
-
Complete the remaining steps of the wizard and click Finish.
Upon completing the wizard, you next want to add the certificate snap-ins using the Microsoft Management Console (MMC).
-
Launch MMC (mmc.exe).
-
Choose File > Add/Remove Snap-ins.
-
Choose Certificates, then choose Add.
-
Choose My user account.
-
Choose Add again and this time select Computer Account.
-
Move the new certificate from the Certificates-Current User > Trusted Root Certification Authorities into Certificates (Local Computer) > Trusted Root Certification Authorities.