Select Local computer (the computer this console is running on), and then click Finish.Įxpand Certificates (Local Computer) in the management console, and then locate the certificate on the certificate path that you don't want to use.Select Certificates, click Add, select Computer account, and then click Next.On the File menu, click Add/Remove Snap-in.Click Start > Run, type mmc, and then press Enter.Log on to the web server as a system administrator.Īdd the Certificate snap-in to Microsoft Management Console by following these steps: To work around this issue, delete or disable the certificate from the certification path that you don't want to use by following these steps: However, the client computer can verify the certificate only by using the longer certification path that links to Root CA certificate (2). When Certification path 1 and Certification path 2 have the same quality score, CryptoAPI selects the shorter path (Certification path 1) and sends the path to the client. If the scores for the multiple certification paths are the same, the shortest chain is selected. A score is calculated based on the quality and quantity of the information that a certificate path can provide. When the computer finds multiple trusted certification paths during the certificate validation process, Microsoft CryptoAPI selects the best certification path by calculating the score of each chain. Certification path 2: Website certificate - Intermediate CA certificate - Cross root CA certificate - Root CA certificate (2).Certification path 1: Website certificate - Intermediate CA certificate - Root CA certificate (1).Additionally, the certificate has the following two certification paths to the trusted root CAs on the web server: And the web server trusts Root CA certificate (1) and Root CA certificate (2). This issue occurs because the website certificate has multiple trusted certification paths on the web server.įor example, assume that the client computer that you're using trusts Root certification authority (CA) certificate (2). The security certificate presented by this website was not issued by a trusted certificate authority.Īfter the user clicks Continue to this website (not recommended), the user can access the secured website. There is a problem with this website's security certificate. When a user tries to access a secured website, the user receives the following warning message in the web browser:
#Remove dymo web service mac windows 7#
This article provides workarounds for an issue where security certificate that's presented by a website isn't issued when it has multiple trusted certification paths to root CAs.Īpplies to: Windows 7 Service Pack 1, Windows Server 2012 R2 Original KB number: 2831004 Symptoms