/
Publish CA certificates to clients
Document toolboxDocument toolbox

Nexus Documentation
CURL vulnerability information (CVE-2023-38545) - Nexus awareness advisory on Microsoft's update KB5014754

Publish CA certificates to clients

Owned by Karolin Hemmingsson (Unlicensed)
Last updated: Dec 18, 2023 by Josefin Klang (Deactivated)
1 min read

To enable for example smart card login, the clients in the domain must trust the certificate authority (CA). That is done by creating a group policy object (GPO).

This article describes one of several ways to create a GPO and add the CA certificates there.

The following prerequisites apply:

  • A user with rights to create a GPO must be available.

Step-by-step instruction

To create a group policy object (GPO):

  1. Start the Group Policy Management.

  2. Create a group policy object (GPO).
    In this example we called this Nexus PKI. Normally this GPO should affect all computers in the domain, so the default security group “Authenticated Users” that holds both computers and users.



To add the CA certificates in the group policy object (GPO):

  1. Edit the GPO and browse to Computer Configuration -> Policies -> Windows Settings -> Security Settings -> Public Key Policies.

  2. Import the Root CA to Trusted Root Certification Authorities

  3. Import the Sub CA to Intermediate Certification Authorities





Related content

Issue domain controller certificates
Issue domain controller certificates
Nexus Documentation
More like this
Set up smart card logon in Active Directory
Set up smart card logon in Active Directory
Nexus Documentation
More like this
Manually integrate third party CA in Active Directory
Manually integrate third party CA in Active Directory
Nexus Documentation
More like this
Get started with Smart ID Desktop App
Get started with Smart ID Desktop App
Nexus Documentation
More like this

Copyright 2024 Technology Nexus Secured Business Solutions AB. All rights reserved.
Contact Nexus | https://www.nexusgroup.com | Disclaimer | Terms & Conditions