VMware vSphere SDKs and Tools 8.0

8.0 7.0 6.7 6.5

Delete a Root Certificate from
vCenter Server

You can use the
TrustedRootChains
 interface to add, delete and read trusted root certificate chains. This use case demonstrates how to delete a root certificate or certificate chain from the trusted root store of your
vCenter Server
 system.
Verify that you have the required privileges for executing the method:
CertificateManagement
Administer
 and
CertificateManagement
Manage
.
Deleting certificates is not available through the
vSphere Client
 and you can only do this by using the
vSphere Automation
 API or the CLI tools.
Deleting a root certificate or certificate chain that is in use might cause breakage of your systems. Proceed to delete a root certificate only if you are sure it is not in use by your
vCenter Server
 or any connected systems.
  1. Retrieve the root certificates from your
    vCenter Server
     system by calling the
    list
     function of the
    TrustedRootChains
     interface.
    The system lists the unique identifiers (chains) of the certificates in the trusted certificate store.
  2. Retrieve the certificate you want to delete by calling the
    get
     function and passing the unique identifier (chain) of the certificate as an argument.
  3. Delete the certificate by using the delete function of the
    TrustedRootChains
     interface and passing the unique identifier (chain) of the certificate as an argument.
  4. To verify you deleted the certificate, list the root certificates from your
    vCenter Server
     system once again.

Content feedback and comments