It's all done in hex.
The schannel dll is a fixed size lookup resource effectively - you can't extend it, it will stop working. Everything has to be embedded into the SChannel as the raw hex string, overwriting the existing certificate. This is a list of the WM6 schannel, the last one that I modified into the hpc2000 schannel:
Comodo
AAA Certificate Services
Comodo
AddTrust External CA Root
Cybertrust
Baltimore CyberTrust Root
Cybertrust
GlobalSign Root CA
Cybertrust
GTE CyberTrust Global Root
Verisign
Class 2 Public Primary Certification Authority
Verisign
Thawte Premium Server CA
Verisign
Thawte Server CA
Verisign
Secure Server Certification Authority
Verisign
Class 3 Public Primary Certification Authority
Entrust
Entrust.net Certification Authority
(2048
)
Entrust
Entrust.net Secure Server Certification Authority
Geotrust
Equifax Secure Certificate Authority
Geotrust
GeoTrust Global CA
Godaddy
Go Daddy Class 2 Certification Authority
Godaddy
http://www.valicert.com/
Godaddy
Starfield Class 2 Certification Authority
Once you get the certificate
(cer
) you need to convert it into hex and impregnate the schannel into an existing resource key.
I still can't find any darn binarys of my last schannel.