Add SpammerTrap Certificate to GPO

 Print E-mail
User Rating: / 0
PoorBest 

Overview

This document will assist in importing the root certificate for the SpammerTrap into an Active Directory Group Policy Object (GPO).

This will fix the issue with Internet Explorer displaying alerts that the site you are visiting has a certifcate that is not in your trusted list.

Note that in IE7 the warning changed from an innocuous popup to a full screen warning, recommending that the user not proceed to the site, this is normal and nothing to be worried about, but if you wish to not see the warning by you or your users, you can import the server’s certificate into your organizations trusted root certificates list.

It is expected that the domain administrator or network administrator will use this how-to.

 

On the SpammerTrap

Login to the SpammerTraps web GUI as the site or domain administrator and browse to the Help section. Right-click and "Save-as" the Download Certificate link and save the certificate to your hard drive.

 

On the Domain Controller

Log into a Domain Controller with administrative access and open the group policy editor. Choose a group policy to edit, as shown.

Select Policy

 

Expand Computer Configuration\Windows Settings\Security Settings\Public Key Policies\Trusted Root Certification Authorities, as shown below.

Expand Container

 

Right click in the empty area to the right and select import. This will start the Certificate Import Wizard. Click next to begin. Brows to the location of the SpammerTrap certificate and click next.

Browse to Certificate

 

The wizard should automatically place the certificate in the correct store, as shown. Click next, then finish to complete the wizard.

Save Certificate to Store


Close out of the group policy editor. Depending on your policy refresh rate, it may take up to 24 hours for all your client computers to refresh with the certificate.

More information
 
supercilious
supercilious
supercilious
supercilious