locked
Schannel: Send intermediate certificates stored in temporary store during handshake RRS feed

  • Question

  • During the TLS handshake where my server has intermediate certificates, Schannel does not transmit these unless they are stored in the "Personal" or "Intermediate" _system_ store. I would like to not store my certificates in the system store at all, since there's no reason to store them permanently and I have no guarantee of being able to remove the certificate(s) from the store cleanly on shutdown.

    Is there a way to do this at all? How/Why not?

    Thanks.

    Monday, October 8, 2018 1:46 PM