Advertisement

05.28.2008 at 08:18AM PDT, ID: 23438381
[x]
Attachment Details

How to remove   Trusted root certificate using GPO

Asked by symde in Active Directory, Miscellaneous Security, Secure Socket Layer (SSL) & HTTPS

Tags: Microsoft, Windows, 2000, XP, 2003, Certificate Management in AD

We are testing a temporary trusted root certificate issued by a Mainframe in our organisation. this root will be trusted only by computers in a certain OU, not enterprisewide.

The certificate can be delivered to an OU by importing the certificate into a GPO ( Computer config>Windows>Security>Public Key>Trusted Root.

My question is, once we are done testing, how do I take this certificate out of the Computer's Trusted root cert store for computers in the OU?
I'd rather not create a CRL/CTL, as this is just a temp cert.
- Is it doable using a GPO?
- If not, can this be deleted by a commandline?Start Free Trial
[+][-]05.28.2008 at 08:46AM PDT, ID: 21661498

View this solution now by starting your 7-day free trial. Setting up your free trial is quick, easy, and secure. We will return you to this solution, unlocked, when you're done.

 

About this solution

Zones: Active Directory, Miscellaneous Security, Secure Socket Layer (SSL) & HTTPS
Tags: Microsoft, Windows, 2000, XP, 2003, Certificate Management in AD
Sign Up Now!
Solution Provided By: CoccoBill
Participating Experts: 2
Solution Grade: A
 
 
[+][-]05.28.2008 at 11:18AM PDT, ID: 21662841

At Experts Exchange, members can ask their questions to thousands of technology professionals, also known as Experts. Experts compete and collaborate to answer those questions by leaving comments like this one.

Start your 7-day free trial to view this Expert Comment or ask the Experts your question.

 
[+][-]05.29.2008 at 07:41AM PDT, ID: 21669561

Often, when Experts are collaborating with members who have asked questions, they will request additional information about the problem. Askers respond with an author comment like this one.

Start your 7-day free trial to view this Author Comment or ask the Experts your question.

 
 
Loading Advertisement...
20080716-EE-VQP-32 / EE_QW_2_20070628