How to trust the CA remote control video driver for installation on Vista computers so it can be deployed silently

Document ID : KB000054299
Last Modified Date : 14/02/2018
Show Technical Document Details

Description:

Windows displays a dialog box to a system administrator that informs the administrator that the publisher of the driver package is not yet trusted. The dialog box provides the administrator the option to install the driver package and the option to always trust the publisher. Windows does not preinstall the driver package for the standard user.

Solution:

The problem is that Vista security settings is not allowing the installation of the driver in silent modus. The driver doesn't install due to the not recognized driver certificate.

There are two options to solve the problem:

  1. Disable UAC (User Account Control) from Vista.

    • (See system configuration/tools/disable UAC)

  2. Uuse DSM certificates registered in the cert store.

    • This should avoid Vista to popup for not certified driver to be installed.

Here some instruction how to install the certificate:

To prepare a single machine for silent installation:

  1. Insert the CA Desktop & Server Management installation DVD.

  2. Open Windows Explorer, and navigate to the DVD drive.

  3. Right-click on Setup.exe, and choose Properties.

  4. Select the Digital Signatures tab.

  5. Choose the CA signature in the Signature List.

  6. Click Details.

  7. Click View Certificate.

  8. Click Install Certificate.

  9. Click Next >

  10. Choose Place all certificates in the following store:, and click Browse.

  11. Select the Trusted Publishers store, and Click OK.

  12. Click Next >, then Finish.

To configure a Windows Domain for silent deployment:

Windows Group Policy can be employed to add the CA certificate to the Trusted Publishers store on all of the machines in the Domain. Complete instructions for editing group policy are beyond the scope of this document.
For more information on group policy, please see (multi line URL):
http://technet2.microsoft.com/WindowsServer/f/?en/library/2c03582f-00b2-43e5-ae1d-493894ad0fd71033.mspx.

  1. Insert the CA Desktop & Server Management installation DVD.

  2. Open Windows Explorer, and navigate to the DVD drive.

  3. Right-click on Setup.exe, and choose Properties.

  4. Select the Digital Signatures tab.

  5. Choose the CA signature in the Signature List.

  6. Click Details.

  7. Click View Certificate.

  8. Select the Details tab.

  9. Click Copy to File.

  10. Click Next >

  11. Select DER encoded binary X.509 (.CER), and click Next >

  12. Choose an appropriate file name, e.g. CACode.cer, and click Next >, Finish.

  13. Use the Group Policy Object Editor or Active Directory Users and Computers applet in Administrative Tools to create a new Group Policy Object, or select an existing policy object that targets the machines you wish to deploy to.

  14. Create a Certificate Trust List for the group policy object.

    See (multi line URL):
    http://technet2.microsoft.com/WindowsServer/f/?en/library/2c03582f-00b2-43e5-ae1d-493894ad0fd71033.mspx.

  15. Add the CA certificate to the Trusted Publishers store for the CTL.