PKI Tutorials - Herong's Tutorial Examples - Version 2.04, by Dr. Herong Yang
Dispabling a Root CA Certificate
This section provides a tutorial example on how to disable a root CA certificate in a certificate store using the certificates console on a Windows XP system.
If you want to stop using a root CA certificate, you don't have to delete it from the certificate store. You can disable it and keep it in the certificate store.
1. Click "Start > All Programs > Administrative Tools > MyCertificatesConsole.msc". "MyCertificatesConsole" window shows up.
2. Open "Certificates > Trusted Root Certification Authorities > Certificates" in the Console Root tree.
3. Select "Go Daddy Class 2 Certification Authority" and click "Properties" from the "Action" menu. The properties dialog box shows up.
4. Check the "Disable all purposes for this certificate" radio button.
5. Check "OK" to save the changes.
The Go Daddy certificate is disabled now. Note that applications, like IE, that uses certificate stores will not be able use this certificate now.
Last update: 2011.
Table of Contents
Introduction of PKI (Public Key Infrastructure)
Introduction of HTTPS (Hypertext Transfer Protocol Secure)
Using HTTPS with IE (Internet Explorer) 10
Perl Scripts Communicating with HTTPS Servers
PHP Scripts Communicating with HTTPS Servers
Java Programs Communicating with HTTPS Servers
►Certificate Stores and Certificate Console
Microsoft Management Console (MMC)
Creating Certificates Console as a MMC Snap-In
Exporting a List of Root CA Certificates
Viewing Certificate Properties and Purposes
Exporting a Root CA Certificate to a File
Deleting a Root CA Certificate
Importing a Root CA Certificate from a File
►Dispabling a Root CA Certificate
.NET Programs Communicating with HTTPS Servers
CAcert.org - Root CA Offering Free Certificates
PKI CA Administration - Issuing Certificates
Digital Signature - Microsoft Word 2007
Digital Signature - OpenOffice.org 3