Dynamische Root-Zertifikate

Dynamische Root-Zertifikate

Postby aker » 05.05.2019, 17:56

:arrow: Ref: viewtopic.php?f=6&t=9186
rbronca wrote:[...]

I have also manually added the Microsoft root certificate and disallowed certs using this guide:
http://woshub.com/updating-trusted-root ... indows-10/ "The List of Root Certificates in STL Format"

Wer Rechtschreibfehler findet, darf sie behalten oder an den Meistbietenden versteigern. / Everybody finding a misspelling is allowed to keep or sell it.

WSUS Offline Update „Community Edition“ 12.4 / 11.9.7esr
Posts: 3776
Joined: 02.03.2011, 15:32

Re: Dynamische Root-Zertifikate

Postby rbronca » 06.05.2019, 02:08

The root certificate issues is something Microsoft should have addressed, but hasn't.
For non internet connected devices there isn't a simple way to update these.
They should be a standard part of the patches that require them.

These missing certs are a patch blocker for recent .Net patches.

The latest stacking updates do update these on at least some operating systems, I believe.

wsusoffline is the best weapon for non internet connected device patching, so can the deployment of these certificates be a standard step?

I have temporarily addressed this by using the initialization hook, but had to manually download and extract the files.


Posts: 43
Joined: 19.08.2015, 08:14

Re: Dynamische Root-Zertifikate

Postby Dalai » 06.05.2019, 02:33

I already made a suggestion a couple of weeks ago: viewtopic.php?f=5&t=9039

Posts: 1025
Joined: 12.07.2016, 21:00

Re: Dynamische Root-Zertifikate

Postby WSUSUpdateAdmin » 10.05.2019, 21:22

Sorry, missed this topic/thread and will work on it, hopefully next week.
Posts: 2245
Joined: 07.07.2009, 14:38

Return to Fehlende Updates / Missing updates

Who is online

Users browsing this forum: No registered users and 7 guests