Contact us
Submit TicketLive ChatReport Abuse
Your Cart
Subtotal$0.00
View Cart
USD
U.S. DollarEuroBritish PoundCanadian DollarsAustralian DollarsIndian RupeesChina Yuan RMBMore Info →

How to import intermediate and root certificates via MMC

If your Microsoft Windows server lacks intermediate or root certificates to establish a complete certificate chain and return it to the client during the SSL handshake, or if you received the server and intermediate certificates from the Certification Authority in separate files, you can import the intermediate and root certificates via Windows Microsoft Management Console (MMC).

As a rule, intermediate and root certificates can be taken from the site of Comodo Certificate Authority (now Sectigo CA). Please contact our Support Team if you are having difficulties in finding the correct files to import.

The instructions are similar for all Windows distributions, however the interface may differ a bit. Here are the steps you need to follow to perform the import.

1. Open Microsoft Management console. To do this, press Win+R, type in mmc and click OK:

import_mmc_01

2. Click File and choose the Add/Remove Snap-in option:

import_mmc_02

3. In the Add or Remove Snap-ins window select the Certificates snap-in and click the Add button:

import_mmc_03

4. Choose Computer account:

import_mmc_04

5. Select Local Computer to manage the snap-in:

import_mmc_05

6. Certificates (Local Computer) snap-in will be selected. Click OK to add it to console:

import_mmc_06

7. To import an intermediate certificate, right-click on the Intermediate Certification Authorities store >> All Tasks >> Import:

import_mmc_07

8. This will start a Certificate Import Wizard:

import_mmc_08

9. Locate the intermediate certificate that you want to import on your machine using Browse button. Click Next:

import_mmc_09

10. The import wizard will prompt you to place the certificate into the single store. Leave Intermediate Certification Authorities as the certificate store. If you have a PKCS7 file with several certificates in it, you can choose Automatically select the certificate store based on the type of certificate, and MMC will place the certificates from the file to the corresponding stores. Once any is selected, click Next:

import_mmc_10

11. To complete the wizard, click Finish. The certificate is successfully imported:

import_mmc_11

To import the root certificate, right-click on the Trusted Root Certification Authorities store >> All Tasks >> Import. Then follow the steps 8-11 to complete the Certificate Import Wizard for a root certificate:

import_mmc_12

   Note: As a rule, Sectigo CA (former Comodo CA)  root certificates are already included in the trusted stores of Windows servers. Import of root certificates using MMC is needed only if the trusted root certificate was not included to the console initially or was deleted intentionally.

Associated articles

Where do I find SSL CA Bundle?
Root Certificates
Updated
Viewed
34421 times

Need help? We're always here for you.

Go to Live Chat page
notmyip