Lab 5: Certificate Stores
Back to Week 6
Objectives
1. List Windows Certificate Stores
✓
Use PowerShell to list all certificates in the LocalMachine Root store with Thumbprint and Subject.
Show Hint
Use: Get-ChildItem Cert:\LocalMachine\Root | Select-Object Thumbprint, Subject
2. Find DigiCert CA Certificate
✓
Search for a specific certificate authority (DigiCert) in the certificate store.
Show Hint
Use: Get-ChildItem Cert:\LocalMachine\Root | Where-Object {$_.Subject -like "*DigiCert*"}
3. Export a Certificate
✓
Export a certificate to a file for backup or transfer purposes.
Show Hint
Use: Export-Certificate -Cert $cert -FilePath C:\Temp\certificate.cer
4. List Linux Certificates
✓
Switch to Linux terminal and list certificates in the standard certificate directory.
Show Hint
Use: ls /etc/ssl/certs/
5. View Certificate Details
✓
Use OpenSSL to view detailed information about a certificate file.
Show Hint
Use: openssl x509 -in ca-certificates.crt -text -noout
6. Check Certificate Expiration
✓
Check when a certificate will expire to ensure it remains valid.
Show Hint
Use: openssl x509 -in ca-certificates.crt -noout -dates
7. Verify Certificate Chain
✓
Verify that a server certificate chains properly to a trusted CA certificate.
Show Hint
Use: openssl verify -CAfile ca-certificates.crt server.crt
Windows PowerShell
Linux Terminal
Windows PowerShell
Copyright (C) Microsoft Corporation. All rights reserved.
PS C:\Users\analyst>
analyst@soc-workstation:~$
analyst@soc-workstation:~$
Lab Complete!
Excellent work! You've mastered certificate store management.
+25 XP