I have a development environment with a test public key infrastructure. This infrastructure has one root CA, one intermediate CA, and several end entities (clients and servers). On dev. machines, the root CA is installed in the "trusted root certification authorities", simulating a "commercial trusted CA"
I have successfully used this environment several times in the past, but I am currently observing the following behavior: the root CA is automatically removed from the "trusted root certificate authorities" when the chain is first built (for example, establishing an SSL connection).
I know that windows automatically add certificates to "trusted root certificate authorities". However, I did not know that they could be automatically deleted. What are the circumstances under which such deletion can occur?
The root certificate does not indicate a CRL or an OCSP endpoint.
thanks
Pedro
source share