d070ac89-35b5-44c1-a417-154e3d8e35be
To ensure secure DoD websites and DoD-signed code are properly validated, the system must trust the DoD Root CAs. The DoD root certificates will ensure that the trust chain is established for server certificates issued from the DoD CAs.
Install the DoD Root CA certificates:
DoD Root CA 2
DoD Root CA 3
DoD Root CA 4
DoD Root CA 5
Certificate installer available in
https://public.cyber.mil/pki-pke/end-users/getting-started/#toggle-id-1
https://www.militarycac.com/dodcerts.htm
Stig: Server 2019: https://www.stigviewer.com/stig/windows_server_2019/2020-06-15/finding/V-93487
https://www.stigviewer.com/stig/microsoft_windows_server_2019/2022-03-01/finding/V-205648
Server 2016: https://www.stigviewer.com/stig/microsoft_windows_server_2016/2022-03-01/finding/V-225021
Server 2012R2: DC: https://www.stigviewer.com/stig/microsoft_windows_server_20122012_r2_domain_controller/2022-03-01/finding/V-226261
Server 2012R2: Member: https://www.stigviewer.com/stig/microsoft_windows_server_20122012_r2_member_server/2022-03-01/finding/V-225441
Desktop: https://www.stigviewer.com/stig/windows_10/2021-08-18/finding/V-220903
STIG SRG-OS-000066-GPOS-00034, SRG-OS-000403-GPOS-00182