0006: Adding Self-Signed PKI to Windows Trusted Certificate Store

2021-01-03 13:18:47 -05:00 · 2021-01-03 13:18:47 -05:00 · 54b039800c
commit 54b039800c
parent 6ec767aa37
1 changed files with 156 additions and 0 deletions
--- a/0006.html
+++ b/0006.html
@ -0,0 +1,156 @@
+    <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+    <html lang="en" xmlns="http://www.w3.org/1999/xhtml">
+      <head>
+        <title>Adding Self-Signed PKI to Windows Trusted Certificate Store</title>
+        <meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
+								<script type="text/javascript" src="https://code.jquery.com/jquery-3.5.1.min.js"></script>
+				        <script type="text/javascript">
+          $(function(){
+            $('textarea').each(function(i,e){
+              theTextarea = $(this);
+              theTextarea.height((theTextarea[0].scrollHeight-5) +'px');
+            });
+
+            $('li').each(function(i,e){
+              var uuid = 'li_' + Math.floor(Math.random() * Math.floor(1000000)).toString() + '_' + i.toString();
+              $(this).contents().wrap('<span id="'+ uuid +'"><label for="cb_'+ uuid +'"></label></span>');
+              $(this).prepend('<input type="checkbox" class="completeBox" id="cb_' + uuid +'" rel="'+ uuid +'" />')
+            });
+
+            $('code,div.codeBlock,textarea.codeBlock').each(function(i,e){
+              theElement = $(this);
+              var lines = theElement.html().split("\n");
+              theElement.empty();
+              for(l=0;l<lines.length;l++){
+                if($.trim(lines[l]) != '' && $.trim(lines[l]).substr(0,1) != '#' && $.trim(lines[l]).indexOf(' #') == -1 && lines[l].substr(0, 4).toUpperCase() != 'REM '){
+									                  theElement.append('<input type="image" src="images/clipboard.png" value="" class="copy-text" rel="copy_'+ i +'_'+ l +'" data-clipboard-text="'+ lines[l].replace(/"/g, '&quot;') +'" /><span id="copy_'+ i +'_'+ l +'">'+ lines[l] +'</span>');
+									                } else {
+                  theElement.append(lines[l]);
+                }
+              }
+            });
+
+            $(document).on('click','input.copy-text',function(){
+              theButton = $(this);
+														$('input.copy-text').attr('src','images/clipboard.png');
+							              $('span.copy-animation').removeClass('copy-animation');
+              try {
+                $('#'+ theButton.attr('rel')).addClass('copy-animation');
+                navigator.clipboard.writeText(theButton.data('clipboard-text').replace(/<[^>]*>?/gm, ''));
+																theButton.attr('src','images/clipboard_active.png');
+								              } catch(err) {
+              }
+              return false;
+            });
+
+            $(document).on('click','input.completeBox',function(){
+              theBox = $(this);
+              $('#'+ theBox.attr('rel')).addClass('strikethrough');
+              theBox.prop('disabled',true);
+              theBox.parent('li').prevAll().each(function(i,e){
+                theLI = $(this);
+                if(theLI.find('input[type=checkbox]').not(':checked')){
+                  $('#'+ theLI.find('input[type=checkbox]').attr('rel')).addClass('strikethrough');
+                  theLI.find('input[type=checkbox]').prop('checked',true).prop('disabled',true);
+                }
+              });
+            });
+
+            if(window.self !== window.top){
+              window.parent.$('iframe.stepsFrame').height((this['scrollingElement']['scrollHeight']+20) +'px');
+            }
+          });
+        </script>
+        <link href="css/steps.css" rel="stylesheet" type="text/css" />
+      </head>
+      <body>
+        <div id="gridContainer">
+          <div class="topMargin"></div>
+          <div id="listName" class="topMargin">
+            <h1>Adding Self-Signed PKI to Windows Trusted Certificate Store</h1>
+          </div>
+          <div></div>
+          <div id="content">
+          <h2>
+	Exporting Certificates from XCA</h2>
+<ol>
+	<li>
+		Launch XCA</li>
+	<li>
+		Open the PKI database if it is not already (File &gt; Open DataBase), enter password</li>
+	<li>
+		Click on the Certificates tab</li>
+	<li>
+		Right click the Intermediate CA certificate &gt; Export &gt; File</li>
+	<li>
+		Set the file name with a .crt extension and verify the export format is PEM (*.crt)</li>
+	<li>
+		Click OK</li>
+	<li>
+		Right click the Root CA certificate &gt; Export &gt; File</li>
+	<li>
+		Set the file name with a .crt extension and verify the export format is PEM (*.crt)</li>
+	<li>
+		Click OK</li>
+</ol>
+<h2>
+	Importing Certificates Into Windows Certificate Store</h2>
+<ol>
+	<li>
+		Right click the Start Button &gt; Run</li>
+	<li>
+		Type mmc.exe, press enter</li>
+	<li>
+		Click File &gt; Add/Remove Snap-in...</li>
+	<li>
+		Click Certificates</li>
+	<li>
+		Click Add</li>
+	<li>
+		Select Computer account</li>
+	<li>
+		Click Next</li>
+	<li>
+		Select Local computer</li>
+	<li>
+		Click Finish</li>
+	<li>
+		Click OK</li>
+	<li>
+		Expand Certificates &gt; Trusted Root Certification Authorities</li>
+	<li>
+		Right click the second level Certificates &gt; All Tasks &gt; Import....</li>
+	<li>
+		Click Next</li>
+	<li>
+		Click Browse &gt; Select the exported Root CA .crt file &gt; Click Next</li>
+	<li>
+		Verify Include all extended properties is checked</li>
+	<li>
+		Click Next</li>
+	<li>
+		Click Next</li>
+	<li>
+		Click Finish</li>
+	<li>
+		Expand Certificates &gt; Intermediate Certification Authorities</li>
+	<li>
+		Right click the second level Certificates &gt; All Tasks &gt; Import....</li>
+	<li>
+		Click Next</li>
+	<li>
+		Click Browse &gt; Select the exported Intermediate CA .crt file &gt; Click Next</li>
+	<li>
+		Verify Include all extended properties is checked</li>
+	<li>
+		Click Next</li>
+	<li>
+		Click Next</li>
+	<li>
+		Click Finish</li>
+</ol>
+          </div>
+        </div>
+      </body>
+    </html>
+