Trusted Certification Authorities Tab (Reflection Certificate Manager)

Trusted Certification Authorities Tab (Reflection Certificate Manager)

Use this tab to manage certificates from trusted certification authorities (CAs) in the Reflection certificate store. Reflection automatically uses any certificates in the Trusted Certification Authorities store for host (server) authentication.

	Import	Add a certificate (typically .cer or .crt) to the Reflection store.
	Remove	Remove the selected certificate from the Reflection store.
	View	View the selected certificate.
	Store trusted certificates in the common application data folder	By default, trusted roots that you add to the Reflection certificate store are saved to the following store, which makes them available only to your current user account: personal_documents_folder\Attachmate\Reflection\.pki\trust_store.p12 The default is: Windows XP, Windows Server 2003: \Documents and Settings\username\My Documents\ Windows 7, Windows Vista, Windows Server 2008: \Users\username\Documents\ When Store trusted certificates in the common application data folder is selected, trusted roots are saved to the following location, which makes them available to all users of the computer: common_application_data_folder\Attachmate\Reflection\.pki\trust_store.p12 Note: The application data folder is hidden by default. The default is: Windows XP, Windows Server 2003: \Documents and Settings\all users\Application Data\ Windows 7, Windows Vista, Windows Server 2008: \ProgramData\ Notes: If a shared store exists, trusted roots are read exclusively from the shared store. Trusted roots you have configured for individual user accounts no longer have any effect. To revert to user-specific trusted root stores after creating a shared store, you must delete or rename the shared trust_store.p12 file. If you simply clear this setting, subsequent changes will modify your personal store, but the personal store continues to have no effect on Reflection's behavior as long as trust_store.p12 is still present in the common application data folder.· If the operating system has been configured by the administrator to deny users write access to common_application_data_folder\Attachmate\Reflection, this setting is not available to those users and they will not be able to modify items in the shared trusted root store.
	Use System Certificate Store for SSH connections	When this item is selected, Reflection uses certificates in your Windows certificate store (in addition to any certificates you have imported into the Reflection store) to authenticate hosts when establishing a Secure Shell connection. Clear this setting to ensure that Reflection applications authenticate hosts using only the certificates in the Reflection store.
	Use System Certificate Store for SSL/TLS connections	When this item is selected, Reflection uses certificates in your Windows certificate store (in addition to any certificates you have imported into the Reflection store) to authenticate hosts when establishing an SSL/TLS connection. Clear this setting to ensure that Reflection applications authenticate hosts using only the certificates in the Reflection store.