Windows Certificate Store

Similar Messages

• Does Adobe plan to change the default setting and start trusting the Windows Certificate store?

  there are rumors that Adobe will be forced by the European authorities to change their default setting in Adobe Reader and automatically trust the European qualified CAs, or even the entire Microsoft Windows trust store.
  I wonder if it is just a wishful thinking of some of the players in the market, or is it something that we should expect sometimes soon?

  Pretty sure that's just wishful thinking. Microsoft doesn't even trust Microsoft, so to speak. Ever turn User Account Controls to the highest setting and then run Windows Update? Windows tries to warn about updates from their own site, through their own updater (IE), which is the ONLY way to access or run the updates.
  Until Microsoft can ELIMINATE the possibility of bieng spoofed, and until we one day live in a virus free world, trust will always be an issue. Be it Adobe, or Roxio, or Mozilla, or....

• Certify a Document using a Windows Digital ID in the Certificate Store

  How does one reference or use an installed certificate (*.pfx) in the Windows Certificate Store rather than using a certificate on a hard drive?
  Control Panel -> Internet Properties -> Content (tab) -> Certificates -> Trusted Root Certification Authorities
  Acrobat -> Menu Bar -> Advanced -> Security Settings... -> Digital IDs -> Windows Digital IDs
  Snippit:
  var myEngine = security.getHandler("Adobe.PPKLite");
  myEngine.login("PassWord", "/C/MyCert.pfx"); // use certificate in teh store, no on the drive
  if (typeof strVersion == "undefined") var strVersion = "1.0.2";                   // 2011.08.01
  if (typeof cerSolomon == "undefined") var cerSolomon = {};
      cerS.sigUserPwd = "";
      cerS.sigDigitalIDPath = "/C/RoggeHeflin.pfx";
      cerS.sigFieldname = "Signature";
      cerS.sigReason = "This document has been digitally signed by MyCompany.";
      cerS.sigLegal = "© 2011 MyCompany.";
      cerS.sigLocation = "Dallas, Texas, USA";
      cerSsigContactInfo = "www.MyCompany.com";
      cerS.MPDValue = "allowNone";
      cerS.sigHandlerName = "Adobe.PPKLite";
      cerS.TimeStamp = "http://tsa.starfieldtech.com/";
  function CertifyDocument()
      if (typeof curDoc == "undefined") var curDoc = this;
      if (typeof sigField == "undefined") var sigField = curDoc.addField(cerS.sigFieldname, "signature", 0, [0, 0, 0, 0]);
      CertifyDoc(sigField, cerS);
  // Trusted Functions
  if (typeof CertifyDoc == "undefined")
  var CertifyDoc = app.trustedFunction(function (SignatureField, CertificateInfo)
          app.beginPriv();
          var myEngine = security.getHandler(CertificateInfo.sigHandlerName);
          myEngine.login(CertificateInfo.sigUserPwd, CertificateInfo.sigDigitalIDPath);
          SignatureField.signatureSign(
                  oSig: myEngine,
                  bUI: 1,
                  cLegalAttest: CertificateInfo.sigLegal,
                  oInfo: {
                      password: CertificateInfo.sigUserPwd,
                      reason: CertificateInfo.sigReason,
                      location: CertificateInfo.sigLocation,
                      contactInfo: CertificateInfo.sigContactInfo,
                      timeStamp: CertificateInfo.TimeStamp,
                      mdp: CertificateInfo.MPDValue
          app.endPriv();

  the following is returned in the JS debugger:
  [ Creation of this signature could not be completed. ] -> [ You have not selected a valid digital ID. Try again. ]
  Here is my code... I think LoginParams needs to be adjusted to use an already-logged-into digital id.  When the PW and fulle root (\c\roggeheflind(sa).pfx) is supplied then the certification/encryptions works... the two requirements I have are 1) avoid have the PW in code, 2) not entering the PW each time (this is part of a batch sequence)
      var myEngine = security.getHandler(CertificateInfo.sigHandlerName);
  //    var policyOptions = {
  //        cHandler: security.PPKLiteHandler,
  //        cTarget: "RoggeHeflin(SA).pfx"
  //    var policyArray = security.getSecurityPolicies(
  //            oOptions: policyOptions
  //    var LoginParams = {
  //        oEndUserSignCert: policyArray
      var LoginParams = {
          cDIPath: CertificateInfo.sigDigitalIDPath,
          cPassword: CertificateInfo.sigUserPwd
      // Login into the security hander (*.pfx file)
      myEngine.login(
              oParams: LoginParams,
              bUI: 0
      // Set the properties for the signature
      var SignatureInfo = {
          reason: CertificateInfo.sigReason,
          location: CertificateInfo.sigLocation,
          contactInfo: CertificateInfo.sigContactInfo,
          timeStamp: CertificateInfo.TimeStamp,
          mdp: CertificateInfo.MPDValue,
          digestMethod: CertificateInfo.Hash
      // Certify and save the document
      SignatureField.signatureSign(
              oSig: myEngine,
              bUI: 0,
              cLegalAttest: CertificateInfo.sigLegal,
              oInfo: SignatureInfo

• What Certificate store is used for machine certificates

  I have a requirement to have windows 7/8 users connect to the company network using VPN & IKEv2.
  I have a RH Linux 7 firewall/authentication server that the windows clients will connect to via a vpn.
  I have generated a self-signed Certificate Authority, and a client certificate. (using NSS & certutil)
  I have configured a VPN/IKEv2 connection on my windows 7 client system.
  I have selected "use machine certificates" on the security tab.
  However when I attempt to connect to the Linux 7 server. Windows returns a 13806 error. The windows process
  for locating the certificate cannot find the certificate. (I used mmc to install both the CA certificate & the client certificate)
  So I wondering since I specified the use of machine certificates, perhaps I've installed the certificates in the wrong "store".
  Is there a special "store" for machine certificates?   

  Hi MeipoXu, many thanks for working with me on this issue.
  Thru some trial & error testing I determined the Local Computer store "combo" that DOES NOT generate
  a 13806 error (cert not found) is to import the client cert to the "Personal" store under "Local Computer"
  and import the CA into the Trusted Root Certificates store, also under the "Local Computer"
  However I still get the 13819 error Invalid Certificate Type.  When I attempt to make a connection over vpn.
  Here are the trace entries:
   Frame: Number = 4, Captured Frame Length = 234, MediaType = NetEvent
  + NetEvent:
  - MicrosoftWindowsWFP: IPsec: Receive ISAKMP Packet
    - WfpUnifiedTracing_IKE_PACKET_RECV IKE_PACKET_RECV: IPsec: Receive ISAKMP Packet
       AsciiString ICookie: 76991f2483ab8271
       AsciiString RCookie: be81c4728325eb7f
       AsciiString ExchangeType: IKEv2 SA Init Mode
       UINT32 Length: 284 (0x11C)
       AsciiString NextPayload: SA
       UINT8 Flags: 32 (0x20)
       UINT32 MessageID: 0 (0x0)
       UnicodeString LocalAddress: 192.168.10.4
       UINT32 LocalPort: 500 (0x1F4)
       UINT32 LocalProtocol: 0 (0x0)
       UnicodeString RemoteAddress: 69.54.99.132
       UINT32 RemotePort: 500 (0x1F4)
       UINT32 RemoteProtocol: 0 (0x0)
       UINT64 InterfaceLuid: 1688849960927232 (0x6000006000000)
       UINT32 ProfileId: 2 (0x2)
    Frame: Number = 5, Captured Frame Length = 121, MediaType = NetEvent
  + NetEvent:
  - MicrosoftWindowsWFP: User Mode Error
    - WfpUnifiedTracing_WFP_USERMODE_ERROR WFP_USERMODE_ERROR: User Mode Error
       AsciiString Function: IkeFindLocalCertChainHelper
     - WinErrorCode ErrorCode: ERROR_IPSEC_IKE_NO_CERT
        UINT32 WinErrorValue: 0x000035EE - ERROR_IPSEC_IKE_NO_CERT - The IKE failed to find a valid machine certificate. Contact your network security administrator about installing a valid certificate in the appropriate certificate store.
    Frame: Number = 6, Captured Frame Length = 121, MediaType = NetEvent
  + NetEvent:
  - MicrosoftWindowsWFP: User Mode Error
    - WfpUnifiedTracing_WFP_USERMODE_ERROR WFP_USERMODE_ERROR: User Mode Error
       AsciiString Function: IkeFindLocalCertChainHelper
     - WinErrorCode ErrorCode: ERROR_IPSEC_IKE_NO_CERT
        UINT32 WinErrorValue: 0x000035EE - ERROR_IPSEC_IKE_NO_CERT - The IKE failed to find a valid machine certificate. Contact your network security administrator about installing a valid certificate in the appropriate certificate store.
    Frame: Number = 7, Captured Frame Length = 117, MediaType = NetEvent
  + NetEvent:
  - MicrosoftWindowsWFP: User Mode Error
    - WfpUnifiedTracing_WFP_USERMODE_ERROR WFP_USERMODE_ERROR: User Mode Error
       AsciiString Function: IkeEncodeCertChainIkeV2
     - WinErrorCode ErrorCode: ERROR_IPSEC_IKE_INVALID_CERT_TYPE
        UINT32 WinErrorValue: 0x000035FB - ERROR_IPSEC_IKE_INVALID_CERT_TYPE - Invalid certificate type.
    Frame: Number = 8, Captured Frame Length = 117, MediaType = NetEvent
  + NetEvent:
  - MicrosoftWindowsWFP: User Mode Error
    - WfpUnifiedTracing_WFP_USERMODE_ERROR WFP_USERMODE_ERROR: User Mode Error
       AsciiString Function: IkeEncodeCertChainIkeV2
     - WinErrorCode ErrorCode: ERROR_IPSEC_IKE_INVALID_CERT_TYPE
      - HRESULT ErrorValue: ERROR_IPSEC_IKE_INVALID_CERT_TYPE
       -  LEHResult:
          UINT32 Code:      (................0011010111111011) 0x000035FB - ERROR_IPSEC_IKE_INVALID_CERT_TYPE - Invalid certificate type.
          UINT32 Facility:  (.....00000000111................) WIN32
          UINT32 X:         (....0...........................) Reserved
          UINT32 N:         (...0............................) Not NTSTATUS
          UINT32 C:         (..0.............................) Microsoft-defined
          UINT32 R:         (.0..............................) Reserved
          UINT32 S:         (1...............................) Failure
  $$$$$$$ N O T E :   Frame Numbers 9 thru 13 are exact same error message as Frame numbers 8 (the first) and Frame 14 (the last) $$$$$$$$ Then I close the connection
  and stop the trace.  
    Frame: Number = 14, Captured Frame Length = 123, MediaType = NetEvent
  + NetEvent:
  - MicrosoftWindowsWFP: User Mode Error
    - WfpUnifiedTracing_WFP_USERMODE_ERROR WFP_USERMODE_ERROR: User Mode Error
       AsciiString Function: IkeConstructAndSendMMResponse
     - WinErrorCode ErrorCode: ERROR_IPSEC_IKE_INVALID_CERT_TYPE
      - HRESULT ErrorValue: ERROR_IPSEC_IKE_INVALID_CERT_TYPE
       -  LEHResult:
          UINT32 Code:      (................0011010111111011) 0x000035FB - ERROR_IPSEC_IKE_INVALID_CERT_TYPE - Invalid certificate type.
          UINT32 Facility:  (.....00000000111................) WIN32
          UINT32 X:         (....0...........................) Reserved
          UINT32 N:         (...0............................) Not NTSTATUS
          UINT32 C:         (..0.............................) Microsoft-defined
          UINT32 R:         (.0..............................) Reserved
          UINT32 S:         (1...............................) Failure
  So after a response is received from the Server (to complete the SA Initiation)
  Windows then "looks" for a cert to send to the server.
  It appears initially it can't find one because 13806 errors are reported (Frames  5 & 6)
  However the session does not issue an 13806.
  It goes on to Frame 7: Note the function IkeEncodeCertChainIkeV2 detects the invalid cert type
  Frames 8 thru 14 are just a repeat of the same error.
  Could this be a flaw in the windows VPN logic ?
  Guy

• 2012 SCCM SP1 Distribution Point Certificate store error on Server 2003 R2

  Has anyone had this issue on Server 2003 R2 where you are getting this error listed below? All content is being distributed ok. But, monitoring is showing errors with all my Distribution points and I want these errors to go away so I don't have to sift through
  all the darn errors.
  Thanks for your help. Daniel.
  Report status message 0x40000952 to MP
  Failed to create certificate store from encoded certificate.. This is usually caused by a problem with the program. Please check the Microsoft Knowledge Base to determine if this is a known issue or contact Microsoft Support Services for further assistance.
  The parameter is incorrect. (Error: 80070057; Source: Windows)
  Status message has been successfully sent to MP from remote DP

  I have found the error message in the smsdpmon.log on a Windows Server 2003 SP2 system acting as a Distribution Point (only).  The error shows up when / during a scheduled content validation on that server and is repeated after each package is "validated".
  From the smsdpmon.log:
  - Start to evaluate package share for package 'XXX0004F' version 5 ...
  - Package XXX0004F is verified successfully
  - Report state message 0x40000950 to MP
  - Failed to create certificate store from encoded certificate.. This is usually caused by a problem with the program. Please check the Microsoft Knowledge Base to determine if this is a known issue or contact Microsoft Support Services for further assistance. The parameter is incorrect. (Error: 80070057; Source: Windows)
  - Report Body: <ReportBody><StateMessage MessageTime="20140315150802.000000+000" SerialNumber="5"><Topic ID="XXX0004F" Type="901" IDType="0"/><State ID="2384" Criticality="0"/><UserParameters Flags="0" Count="2"><Param>XXX0004F</Param><Param>["Display=\\DPSERVNAME.domain.com\"]MSWNET:["SMS_SITE=XXX"]\\DPSERVNAME.domain.com\</Param></UserParameters></StateMessage></ReportBody>
  - Report status message 0x40000950 to MP
  - Failed to create certificate store from encoded certificate.. This is usually caused by a problem with the program. Please check the Microsoft Knowledge Base to determine if this is a known issue or contact Microsoft Support Services for further assistance. The parameter is incorrect. (Error: 80070057; Source: Windows)
  - Status message has been successfully sent to MP from remote DP
  - Report status message 0x80000954 to MP
  - Failed to create certificate store from encoded certificate.. This is usually caused by a problem with the program. Please check the Microsoft Knowledge Base to determine if this is a known issue or contact Microsoft Support Services for further assistance. The parameter is incorrect. (Error: 80070057; Source: Windows)
  - Status message has been successfully sent to MP from remote DP
  I tried to pretty up the above - not sure that I was successful.
  The site server is a Windows Server 2012 R2 Standard running SCCM 2012 R2.

• AnyConnect, EAP-TLS, Certificate Store Issue

  Morning All,
  I've got a customer that wants to deploy AnyConnect for their new EAP-TLS based WLAN. We can get the service working perfectly using the windows 7 supplicant. The problems start when using AnyConnect.
  When we create a profile with certificate store set to all in the profile editor, we get an error along the lines of no valid certificate found. This seems a bit crazy considering the windows supplicant can both find and use it.
  Any ideas?
  Cheers,
  N

  Hi Salod,
  I now believe it to be an AD permission issue with regard to the cert stores. I have lab'd this and have got both user and machine certs working through the anyconnect client.
  Regards,
  Nick

• Personal Certificate Store in iPCU

  Does anyone know a way to sort certificates when selecting them from the iPCU? The store displays ALL certs, instead of just personal ones. It's rather time consuming searching for one certificate through the hundreds imported into a system within a PKI environment. The goal is to either sort alphabetically or  display certs from the "Personal" group of the certmgr.msc only. Maybe a registry hack?
  For clarification, take a look at the fourth screenshot at http://wiki.cacert.org/Technology/TechnicalSupport/EndUserSupport/OperatingSyste ms/iOS. It's titled Personal Certificate Store yet displays certs from the "Third-party Root CA" and "Other People" groups of certmgr.msc.
  Using the latest iPCU version available. Windows 7.

  As far as I know this is not possible. The IPCU displays the certificates by install order (I believe).

• Error MSB3323: Unable to find manifest signing certificate in the certificate store.

  Problems began when I received the MSDN Final VS 2005 v8.0.50727.42 and uninstalled the RC build which I had worked with without issue and replaced it with the previously mentioned.
  After four or so installs/uninstalls I got past the Invalid license data. Reinstall is required. http://forums.microsoft.com/MSDN/ShowPost.aspx?PostID=162712&SiteID=1
  I have tested C++ project builds for managed and unmanaged code and both work without a problem. My C# projects however fail to build, the error I get is:
  ------ Rebuild All started: Project: D And P, Configuration: Release Any CPU ------
  C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Microsoft.Common.targets(1718,7): error MSB3323: Unable to find manifest signing certificate in the certificate store.
  Done building project "D And P.csproj" -- FAILED.
  ========== Rebuild All: 0 succeeded, 1 failed, 0 skipped ==========
  If anyone has any idea of what a next step is please let me know.

  I got the same problem but I was tring to strong name my application.  I was able to solve the problem by opening the XXX.csproj file in a text editor (notepad.exe) and remove the following tags from the XML.
  <ManifestCertificateThumbprint>...</ManifestCertificateThumbprint>
  <ManifestKeyFile>...</ManifestKeyFile>
  <GenerateManifests>...</GenerateManifests>
  <SignManifests>...</SignManifests>
  It seem that someone (another member of my team) was playing with the OneClick stuff, but didn't check in the strong name key files he used.  But did check in the project file.
  Then when I created the new strong name key file and signed the EXE, something was out-of-sync with the above tags in the probject file and the new key file.
  Removing these tags may be a bad thing (someone from MS will need to comment) but it worked for me.

• Linux certificate store

  Hi All,
  i create one small application for signing and verification on windows.
  and when same application i try to run on Linux, it not show certificate in cert store. because cert store i specified is of Microsoft.
  keyStore=KeyStore.getInstance("Windows-My");So same how we do in Linux....????
  Plz help, i m new to Linux.
  thanks in advance.

  So does Linux have a certificate store? If so,
  what type? Note that that's a Linux question, not a
  Java question.
  Or will you just use a Java keystore?I dont know linux have Cert Store or not and not type too.
  i new for linux and before starting i want to know abt its cert store.
  Recently i m using Microsoft CertStore wid the help of keyStore object.
  Actually i m creating one application for siging data,
  i have to show all certificate on tht System.
  if OS will windows thn i can show certificate wid the help of
  keyStore=KeyStore.getInstance("Windows-My");bt if user OS will Linux thn how can i show tht certificate of tht System.....
  i want to know this thing????

• JRE certificate store vs OS certificate store

  It appears that the certificate store used by the Oracle Java Runtime Environment (JRE) Version 7 Update 45 is independent of the certificates maintained by a Microsoft Windows 7 Enterprise 32-bit operating system. Can anyone confirm that the JRE certificate store is independent of the operating system or browser certificate stores or point me to relevant documentation on this?
  I see that certificate can be manually imported into the User-level JRE certificate store using the "Java Control Panel, Security, Manage Certificates..." dialog. Is it possible to script the import of a certificate into the JRE system certificate store?

  i want to extract certificate from microsoft
  certificate store!!!
  wht is the procedure to do that???
  currently i m using jdk1.5 and my task is to list all
  the certificate from microsoft cert store and print
  them in swing's application!!!
  i dont know how to do this in 2 days so plz help me
  to complete this task!!!
  thnx in advance!!!Hi, you can use the Assembla JCE Provider, "https://download.assembla.se/jceprovider/"
  I use this metod to recover the windows keystore:
  public KeyStore openWinKeyStore() throws NoSuchProviderException,
  KeyStoreException, CertificateException, NoSuchAlgorithmException,
  IOException,KeySoreSOException {
  // check for windos OS
  String os = System.getProperty("os.name");
  if(os.toLowerCase().indexOf("windows")==-1){
  throw new KeySoreSOException("Sistema operativo no soportado " + os);
  // load the jce provider
  java.security.Security.insertProviderAt(new MSProvider(), 2);
  //create the keystore of type msks (microsoft keystore)
  KeyStore ks = KeyStore.getInstance("MSKS", "assembla");
  // load certificates ( byte[]null, password null)
  ks.load(null, null);
  return ks;
  I hop this can help you.

• The window 8 store and all other app open and then close immediately .

  The window 8 store and all other app open and then close immediately .I
  have tried many methods like sfc /scannow,, powershell
  -ExecutionPolicy Unrestricted Add-AppxPackage -DisableDevelopmentMode -Register $Env:SystemRoot\WinStore\AppxManifest.xml without the quotes but , changed registery entries but found no effect . kindly help me !

  Hi ObaidMaki,
  This forum is to discuss problems of Windows Forms. Your question is not related to the topic of this forum.
  I would suggest you posting it in the dedicated Windows Forum
  http://answers.microsoft.com/en-us/windows for more efficient responses, where you can contact Windows experts.
  Best regards,
  Youjun Tang
  We are trying to better understand customer views on social support experience, so your participation in this interview project would be greatly appreciated if you have time. Thanks for helping make community forums a great place.
  Click
  HERE to participate the survey.

• App Certification Fails While uploading into Windows Phone Store..

  Hi Everyone,
  I am facing an issue from last few days and stuck badly .
  Whenever i am uploading my app in windows phone store getting the below error for everytime..
  Your app submission does not include a privacy policy. Apps that use, collect, or share personal information must include a privacy policy that informs users how
  this information is used, stored, secured, and disclosed. See policy 10.5.1 for details about the requirements for a privacy policy.
  Please let me know what i need to do to resolve the above issue. What step i need to take..
  Thanks in advance!!!!

  As part of the submission process (Upload and describe your package) there is a section where you can add a privacy policy.  It is a step you need to do

• AZURE The specified certificate could not be found in the LocalMachine certificate store,or the certificate does not have a private key.

  Hello,
  I try to make a HV website in Azure. It took me hours to figure out how to make a HV certificate with my own password. But I figured it out. With the HV application manager I uploaded the certificate to the HV platform. This worked fine. Then I created a
  c# project with also works well on my local machine.
  This is the code I use in the web.config
  <appSettings>
  <add key="ApplicationId" value="24ee15be-1497-4719-ad70-d1223adbf021" />
  <add key="ShellUrl" value="https://account.healthvault-ppe.co.uk/" />
  <add key="HealthServiceUrl" value="https://platform.healthvault-ppe.com/platform/" />
  <!-- when we call the SignOut() method on HealthServicePage, it redirects us to the page below -->
  <add key="NonProductionActionUrlRedirectOverride" value="Redirect.aspx" />
  <!-- The redirect page (specified above) uses these keys below to redirect to different
  pages based on the response from the shell -->
  <add key="WCPage_ActionHome" value="default.aspx" />
  <add key="WCPage_ActionAppAuthSuccess" value="default.aspx" />
  <add key="WCPage_ActionSignOut" value="SignedOut.aspx" />
  </appSettings>
  Next step is to deploy the site to Azure. I was able to upload the certicate to Azure.
  After deploy I get the following error:
  System.Security.SecurityException: The specified certificate, CN=WildcatApp-24ee15be-1497-4719-ad70-d1223adbf021, could not be found
  in the LocalMachine certificate store,or the certificate does not have a private key.
  I checked the certificate on another server with a different key in the web.config
  <add key="ApplicationCertificateFileName" value="c:\Zodos\website\WildcatApp-24ee15be-1497-4719-ad70-d1223adbf021.pfx"/>
  This gives me this error:
  Exception Details: System.Security.Cryptography.CryptographicException: The specified network password is
  not correct.
  So the procedure I followed definitely was not correct:
  It works on my local machine
  It doesn't work on another server or on Azure
  I can see that the procedure I follow is not correct, but what am I doing wrong?
  Wilfred

  I am having the same problem. I see I have updates thru the Mac App Store but when I try and run the System updates in the Mac App Store it errors out. But I can update third party apps.
  Have even tried going thru Terminal to check for software updates but still have same error claiming it can not find the hostname server.
  Jefre

• How to publish Windows Phone 8.1 Silverlight app to Windows Phone store?

  I created Windows Phone 8.1 Silverlight app, and I can't to upload it into WP store. I want to use Create
  App Packages tool in Visual Studio 2013 Professional, but it's impossible for Silverlight apps. I read many guides
  on dev.windows.com. It's necessary to upload only .appx, .appxbundleor .appxupload files,
  but I have .xap file
  only in Bin\ARM\Release folder.
  May anyone help me?

  Appx packages are only for Windows Runtime apps. Windows Phone Silverlight apps use xap files. The Windows Phone Store will accept either xap (for Silverlight) or appx (for Runtime) apps.
  I discussed this in more detail in my blog entry: Why can’t I create an app package? Windows Phone Xap vs. Appx   

• Failure to Connect to Windows 8 Store using Domain Network

  Well, I am having a bit of trouble here. I am trying to connect to the Windows 8 Store to update my Lenovo ThinkPad to 8.1, but it seems that it will not connect 95% of the time. It is very rare for me to be able to get on to the store. Most of the time
  when I try to connect, I am at the local school which I am at 5 days a week. It keeps giving me the following message:
  Your PC isn't connected to the internet. To use the Store, connect to the internet and then try again.
  Let me say once more that I am at a school when this happens, I just want to know if there is anything I can do to fix it and what that might be.
  Thank you for taking the time to read this.

  Hi Ayers105,
  You may take a try to reset Windows Store cache, type WSReset.exe
  in the search box, then
  Select WSReset, wait for a moment and then try to update your apps again.
  Further, if the above won't help, try the following method:
  type or paste the following command:
  powershell -ExecutionPolicy Unrestricted Add-AppxPackage -DisableDevelopmentMode -Register $Env:SystemRoot\WinStore\AppxManifest.xml
  hit Enter.
  Now in that same Administrator Command Prompt type or paste: start "" "ms-windows-store:"
  Reference:
  Windows App Store doesn't load after 8.1 Upgrade v. 2 (Also Works for Windows 10!)
  Best regards
  Michael Shao
  TechNet Community Support