For some of our applications we are using SSL certificates. We create our own SSL certificates using openSSL. On windows 2K8R2, we have installed both our CA (into trusted root certificates store of the machine) and the certificate for that machine. Couple of times we had our certificate deleted from trusted root certificates store. We see below message in the event log "Successful auto delete of third-party root certificate:: Subject.....". We have seen this behavior on few windows 7 machines also. The same CA certificate is installed on XP and Vista machines also. So far we have not seen this behavior on other operating systems. does any body have an idea on why CAPI2 is deleting our CA certificate when it was specifically installed into trusted root certificates store. thanks

Hi, It seems that CAPI is deleting the certificate because the Root is already trusted through a Certificate Trust List. Please check the appropriate "Enterpise Trust" store for a CTL (certificate trust list) that duplicates the trust provided by the 3rd Party root that was deleted from the "Trusted Root Certification Authorities" store. For reference: CTLs are stored in the Enterprise Trust store and you can use the Certificates console to view them. http://technet.microsoft.com/en-us/library/cc962065.aspx See sections on "Certificate Trust Lists" and "Certificate Validation Process". Thanks, John