Distribute a certificate to Windows Servers with Group Policy

You can use the Group Policy Management console on Windows servers to distribute certificates to web servers across your network. This procedure applies to Windows Server 2016, 2012 R2, and 2012.

You must be a domain or enterprise administrator to perform this procedure.

How to

  1. On the domain controller, open the Group Policy Management console.
  2. Locate or create an existing Group Policy Object (GPO) associated with the user's domain, site, or organizational unit (OU).
  3. Right-click the GPO and select Edit.
  4. In the Group Policy Management Editor, click Computer Configuration > Policies > Windows Settings > Security Settings > Public Key Policies.
  5. Right-click the Trusted Root Certificate Authorities object type and select Import. The Welcome to the Certificate Import Wizard appears.
  6. Click Next.
  7. Browse or enter the location where the certificate is stored, and click Next.
  8. Make sure Place all certificates in the following store is selected, and click Next.
  9. Click Finish.