PKI - Import InCommon Intermediate Certificate on Windows Systems

Import InCommon Intermediate Certificate:

This article is intended for Windows 7, 2008 Server, and 2012 Server.  There are small changes between the Windows versions, but the overall steps are the same.

InCommon is an entity that signs LSU's SSL certificates on the behalf of Comodo.  Therefore, InCommon is an intermediate authority, and its certificate is needed to complete the trust chain.  The InCommon Intermediate Certificate must be installed on any computer that uses SSL certificates issued by LSU.

1.  Launch Certificates Manger with administrator privilege. 

2.  Download the InCommon intermediate certificate:  Save the file incommon_ca.cer in a place accessible by your computer.

3.  In Certificates Manager, expand Certificates (Local Computer), then expand Intermediate Certification Authority.  Right click on Certificates, then go to All Tasks and click on Import...:

Import command

IMPORTANT NOTE: DO NOT right click on Certificate Revocation List and import the certificate here.  This would cause the system to reject the InCommon Intermediate Certificate.

4.  Click Next on the Welcome screen, then click the Browse... button.  Browse to the location that you had saved incommon_ca.cer earlier, then click Open.  Click Next.

Browse and Next button

5.  Take the default on this screen and click Next.

Place all certificates in the following store; click Next.

6.  Click Finish.

Completion window

7.  You should now see the InCommon Intermediate Certificate(InCommon Server CA) in the list of intermediate certificates.

InCommon Server CA.


Referenced from: StartSSL

7/24/2020 12:33:16 PM