Hi there! 
Thanks for reading my message. I have the following question to ask:
We have an 2008 R2 Active Directory Environment with mostly Win 7 & IE 11 Clients
For some of our employees we order SMIME certificates from an external CA (Comodo).
At the moment we have no way to back up these private Certificates (PFX) from the IE Certificate Store.
Is there any way to do this via GPO / Powershell / Batch-Script?
So that we have these PFX-Files backed up on a secure location. Otherwise, when the SSD gets defective and an user didn't backup his certificate, all the encrypted mails will be unreadable forever because the certificate / private Key cannot be reissued.
Thanks in advance!
Best Whishes,
Konrad