Root Certificates in Windows Vista


You’ll notice that very few root certificates are installed during a fresh Windows Vista setup. In fact, the only root certificates installed are those required to boot the OS. By default, if a root certificate is untrusted, Windows Vista will use Windows Update (WU) to see if the root certificate is one of the hundred or so root certificates that were installed with Windows XP. If the root certificate is on WU, the operating system will copy the root certificate and install it silently. But what if you don’t want this to happen? What if you only want to trust the root certificates you trust? All you need to do is disable Windows Vista’s automatic root certificate update capability by following these steps:

  1. Open mmc.exe and add the Local Computer Policy Snap-in.

  2. Navigate to Computer Configuration | Windows Settings | Security Settings | Public Key Policies.

  3. Click the Certificate Path Validation Settings object.

  4. Click the Network Retrieval tab.

  5. Check Define these policy settings.

  6. Uncheck Automatically update certificates in the Microsoft Root Certificate Program.



Writing Secure Code for Windows Vista
Writing Secure Code for Windows Vista (Best Practices (Microsoft))
ISBN: 0735623937
EAN: 2147483647
Year: 2004
Pages: 122

flylib.com © 2008-2017.
If you may any questions please contact us: flylib@qtcs.net