sCACertFilename = "MS_SCL_CA_v1.pem" ' Default filename

' Prompt user for DC Cert
On Error Resume Next
Wscript.Echo "Click OK and select the CA certificate to install."
Set objDialog = CreateObject( "SAFRCFileDlg.FileOpen" ) ' "Only available on WinXP"?
If objDialog.OpenFileOpenDlg Then
  sCACertFilename = objDialog.FileName
Else
  Wscript.Echo "Aborted!"
  Wscript.Quit 0
End If
On Error Goto 0

Set oShell = WScript.CreateObject("WScript.Shell") 
' Publish cert to NTAuth Store
oShell.Run "cmd /C certutil -dspublish -f " & Chr(34) & sCACertFilename & Chr(34) & " NTAuthCA", 0, True 
oShell.Run "cmd /C gpupdate /force", 0, True
oShell.Run "cmd /C certutil -pulse", 0, True

Wscript.Echo "Done! Click OK and verify that the certificate was installed."

'Let the user verify that the cert was installed
oShell.Run "cmd /C certutil -viewstore -enterprise NTAuth", 0, True 
oShell.Run "cmd /C certutil -store -enterprise NTAuth > " & Chr(34) & "3. ImportCACertToNTAuthStore.log" & Chr(34), 0, True