PKI Tutorials - Herong's Tutorial Examples - v2.20, by Dr. Herong Yang
Dispabling a Root CA Certificate
This section provides a tutorial example on how to disable a root CA certificate in a certificate store using the certificates console on a Windows system.
If you want to stop using a root CA certificate, you don't have to delete it from the certificate store. You can disable it and keep it in the certificate store.
1. Click "Start > All Programs > Administrative Tools > MyCertificatesConsole.msc". "MyCertificatesConsole" window shows up.
2. Open "Certificates (Local Computer) > Trusted Root Certification Authorities > Certificates" in the Console Root tree.
3. Select "Go Daddy Class 2 Certification Authority" and click "Properties" from the "Action" menu. The properties dialog box shows up.
4. Check the "Disable all purposes for this certificate" radio button.
5. Check "OK" to save the changes.
The Go Daddy certificate is disabled now. Note that applications, like IE, that uses certificate stores will not be able use this certificate now.
Table of Contents