Script for removing personal certificates

Posted on 2011-05-11
Last Modified: 2013-05-02
Is there a way to script removal of personal certificates?  We have  a few computers in a lab with local provider access to the Internet.  The users log onto some secure sites with Smart cards, so their certificates are captured.  After several people and a few days, this can add up, and it becomes very difficult to find your certificate amongst so many.  I know that you can use the Internet options panel to remove certificates, but is it possible to automate this, like a logoff script?  I tried certmgr, but it just opened the GUI, and certmgr.exe did not work at all.  I removed the registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\SystemCertificates\MY\Certificates, but that had to be the wrong location, because the certs are still there. I would appreciate any help you could give me on this matter.  Thanks.
Question by:rocketgirl9
    LVL 16

    Accepted Solution

    Give this a shot I assume this is a server?

    Let me know if i'm barking up the wrong tree here.
    LVL 40

    Assisted Solution

    by:Jackie Man
    I am not sure whether my method will work or not as the script can work on windows 7.

    Do you have time to try?

    IF yes, in computers in your lab running Windows Vista, without removing the stored personal certificate, run the following command in command prompt and post back the content inside results.txt file.

        cmdkey /list ->results.txt

    Please disguise the identification information inside the file before you post back the results.

    Author Closing Comment

    Thanks alot, both of you.  I am sorry I did not get back to you right away.  The machine was not a server, but I found an option somewhere in the formerly disabled Smart Card reader configuration manager app that allows the cached card credentials to be dumped upon the card removal.  Thanks so much for your hlep.

    Featured Post

    6 Surprising Benefits of Threat Intelligence

    All sorts of threat intelligence is available on the web. Intelligence you can learn from, and use to anticipate and prepare for future attacks.

    Join & Write a Comment

    Hi All Just a quick one for everybody. I was recently looking into setting the default User Account Picture for all my vista clients within the network but on closer inspection the group policy setting only allows you to set the default pictur…
    There are many reasons a PC runs slower than when it was new, ranging from malicious software intended to mess things up to simple general Windows use.  Your PC performance may slowly degrade over time without you noticing but when you buy a PC from…
    The Task Scheduler is a powerful tool that is built into Windows. It allows you to schedule tasks (actions) on a recurring basis, such as hourly, daily, weekly, monthly, at log on, at startup, on idle, etc. This video Micro Tutorial is a brief intro…
    This demo shows you how to set up the containerized NetScaler CPX with NetScaler Management and Analytics System in a non-routable Mesos/Marathon environment for use with Micro-Services applications.

    746 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    18 Experts available now in Live!

    Get 1:1 Help Now