PKI Tutorials - Herong's Tutorial Examples

∟Windows Certificate Stores and Console

∟Disabling a Root CA Certificate

This section provides a tutorial example on how to disable a root CA certificate in a certificate store using the certificates console on a Windows system.

If you want to stop using a root CA certificate, you don't have to delete it from the certificate store. You can disable it and keep it in the certificate store.

1. Click "Start > All Programs > Administrative Tools > MyCertificatesConsole.msc". "MyCertificatesConsole" window shows up.

2. Open "Certificates (Local Computer) > Trusted Root Certification Authorities > Certificates" in the Console Root tree.

3. Select "Go Daddy Class 2 Certification Authority" and click "Properties" from the "Action" menu. The properties dialog box shows up.

4. Check the "Disable all purposes for this certificate" radio button.

5. Check "OK" to save the changes.

The Go Daddy certificate is disabled now. Note that applications, like IE, that uses certificate stores will not be able use this certificate now.

Table of Contents

 About This Book

 Introduction of PKI (Public Key Infrastructure)

 Introduction of HTTPS (Hypertext Transfer Protocol Secure)

 Using HTTPS with Google Chrome

 Using HTTPS with Mozilla Firefox

 HTTPS with Microsoft Edge

 Using HTTPS with Apple Safari

 HTTPS with IE (Internet Explorer)

 Android and Server Certificate

 iPhone and Server Certificate

►Windows Certificate Stores and Console

 Microsoft Management Console (MMC)

 Creating Certificate Console as a MMC Snap-In

 Exporting a List of Root CA Certificates

 Viewing Certificate Properties and Purposes

 Exporting a Root CA Certificate to a File

 Deleting a Root CA Certificate

 Importing a Root CA Certificate from a File

►Disabling a Root CA Certificate

 RDP (Remote Desktop Protocol) and Server Certificate

 macOS Certificate Stores and Keychain Access

 Perl Scripts Communicating with HTTPS Servers

 PHP Scripts Communicating with HTTPS Servers

 Java Programs Communicating with HTTPS Servers

 .NET Programs Communicating with HTTPS Servers

 CAcert.org - Root CA Offering Free Certificates

 PKI CA Administration - Issuing Certificates

 Comodo Free Personal Certificate

 Digital Signature - Microsoft Word

 Digital Signature - OpenOffice.org 3

 S/MIME and Email Security

 PKI (Public Key Infrastructure) Terminology

 Archived Tutorials

 References

 Full Version in PDF/EPUB

Disabling a Root CA Certificate - Updated in 2022, by Herong Yang