A root CA certificate is the publicly-exposed key of a certificate authority. When using server certificate validation with a self-signed certificate, it is necessary to install the root CA certificate on the user's machine. This setting allows the network administrator to ensure a CA certificate is installed. On Leopard, it will also ensure that the CA certificate is marked as 'trusted'.
XpressConnect can detect the installation status of a root CA certificate.
Supported settings include:
Installed - Default. The certificate is considered installed if it exists in one of the following certificate stores: Root, My, CA, or AuthRoot.
During auto remediation, XpressConnect will install the certificate in the Root certificate store (Windows) or the System keychain (Leopard). A new install of Windows XP, Vista, and Leopard contains a limited set of default root CA certificates.
