Link to home
Start Free TrialLog in
Avatar of rocketgirl9
rocketgirl9

asked on

Script for removing personal certificates

Is there a way to script removal of personal certificates?  We have  a few computers in a lab with local provider access to the Internet.  The users log onto some secure sites with Smart cards, so their certificates are captured.  After several people and a few days, this can add up, and it becomes very difficult to find your certificate amongst so many.  I know that you can use the Internet options panel to remove certificates, but is it possible to automate this, like a logoff script?  I tried certmgr, but it just opened the GUI, and certmgr.exe did not work at all.  I removed the registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\SystemCertificates\MY\Certificates, but that had to be the wrong location, because the certs are still there. I would appreciate any help you could give me on this matter.  Thanks.
ASKER CERTIFIED SOLUTION
Avatar of joinaunion
joinaunion
Flag of Canada image
Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
SOLUTION
Avatar of Jackie Man
Jackie Man
Flag of Hong Kong image
Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
Avatar of rocketgirl9
rocketgirl9

ASKER

Thanks alot, both of you.  I am sorry I did not get back to you right away.  The machine was not a server, but I found an option somewhere in the formerly disabled Smart Card reader configuration manager app that allows the cached card credentials to be dumped upon the card removal.  Thanks so much for your hlep.