Problem: Using GPMC I edit the Default Domain Policy, import a .cer file into Trusted Root Certification Authorities. The Cert shows up properly in the GUI. I exit the policy. I reopen the policy. The cert does not show up in the GUI. The operation is being performed on the terminal server console of the PDC emulator. No error message is received, nothing in the logs indicating a problem.
Editing the User portion of the Default Domain Policy operates correctly (i.e. changes made are saved).
Environment: 2008R2, Forest functional level - Windowes Server 2003.
Troubleshooting performed: run GPMC as administrator, verified NTFS permissions for the sysvol subfolder where the registry.pol file is saved, disabled all third party AV and filter drivers. Procmon analysis performed by Microsoft Premiere engineer. Internet searches revealed nothing useful thus far.
We have many other domains for which we've performed this import without issue. Any guidance would be greatly appreciated.