You can view and inspect certificates based on what they are intended to be used for, such as client authentication or key recovery, rather than on their logical roles.
Users or local Administrators is the minimum group membership required to complete this procedure. Review the details in "Additional considerations" in this topic.
|To display certificates by certificate purpose|
Open the Certificates snap-in for a user, computer, or service.
In the console tree, click Certificates - Current User , Certificates (Local Computer), or Certificates - Service.
On the View menu, click Options.
Under Organize view mode by, click Certificate purpose, and then click OK. The Intended Purposes column heading will appear in the details pane.
User certificates can be managed by the user or by an administrator. Certificates issued to a computer or service can only be managed by an administrator or user who has been given the appropriate permissions.
To open the Certificates snap-in, see Add the Certificates Snap-in to an MMC.