How to Retrieve an SSL Thumbprint in Windows using MMC

When you need to specify claims found in a certificate for client or server authentication, you may need to submit a Thumbprint claim.
– Typical example is when installing Windows Admin Center where the Thumbprint is required.

Note: The SSL Thumbprint can also be retrieved using PowerShell commands. See https://techdirectarchive.com/2020/01/05/how-to-retrieve-an-ssl-thumbprint-in-windows-using-powershell/

Fire up an MMC Console as shown in the image below

This will open up the Console Root window as shown below.

Next, click on file,
– Click on Add/Remove Snap-ins as shown in the image below.

In the Console Root window’s left pane, click Certificates (Local Computer).
– Click on Add and
– Click on ok.

This will open up the Certificate Snap-in Window.

- Click the Personal folder to expand it.
- Click the Certificates folder to expand it.

In the list of certificates, note the Intended Purposes heading. Find a certificate that lists Client Authentication as an intended purpose.
- Double-click the certificate.
- In the Certificate dialog box, click the Details tab.
- Scroll through the list of fields and click Thumbprint.
- Copy the hexadecimal characters from the box. 

If this thumbprint is used in code for the X509 FindType, remove the spaces between the hexadecimal numbers. For example, the thumbprint “a9 09 50 xxxxxxxxxxxxx2 77 a3 2a 7b” should be specified as a90950xxxxxxxa32a7b” in code. In our case this is fine.

2 thoughts on “How to Retrieve an SSL Thumbprint in Windows using MMC

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s