11. Click OK.
12. From the list of stores, scroll up and expand Trusted Root Certificate Authorities.
13. Click Local Computer.
14. Click OK.
15. Click Next.
16. Click Finish to complete the process.
17. Reboot after a certificate is installed.
Use Microsoft Management Console (MMC) to verify that the CA is installed in the machine
store.
1. In the Start menu, click Run.
2. Enter MMC.
3. Click OK to open The Microsoft Management Console.
4. Click File.
5. Click Add/Remove Snap-in.
6. Click Add to open the Add Standalone Snap-in page.
7. Click Certificates.
8. Click Add.
9. Click Computer account.
10. Click Next.
11. Click Finish.
12. Click Close.
13. Click OK.
14. In the console, click Certificates (Local Computer).
15. Click Trusted Root Certificate Authorities.
16. Click Certificates.
17. Verify that the CA you just installed is listed.
18. Click File.
19. Click Exit to close the console.
Obtain a certificate from a Microsoft Windows 2000 CA:
1. Start Internet Explorer and browse to the Certificate Authority HTTP Service (use an URL
such as http://yourdomainserver.yourdomain/certsrv with certsrv being the command
that brings you to the certificate authority. You can also use the IP address of the server
machine. For example, "192.0.2.12/certsrv."
2. Logon to the CA with the name and password of the user account you created on the
authentication server. The name and password do not have to be the same as the
Windows log on name and password of the current user.
3. On the Welcome page of the CA, select Request a certificate task and submit the
form.
4. Choose Request Type: Select Advanced request.
5. Click Next.
6. Advanced Certificate Requests: Select Submit a certificate request to this CA
using a form.
7. Click Submit.
8. Advanced Certificate Request: Select User certificate template.
9. Click Mark keys as exportable.