Removing a CA key
-
I have some imported CA's. (generated in a stand-alone RootCA VM)
I then (post) imported the key.
Is it possible to remove the key from the CA again via the GUI?
or;
should I manually remove it within the xml? -
system / cert manager , is there no bin or edit icon to press, next to the imported CA ?
-
@kiokoman The CA is still in use, and I want the cert. But not the key, as I don't want the ability to generate certs from this server.
-
Click the pencil icon to edit the CA. Delete the key. Save.
Remember: Upvote with the 👍 button for any user/post you find to be helpful, informative, or deserving of recognition!
Need help fast? Netgate Global Support!
Do not Chat/PM for help!
-
@jimp That's exactly what I was attempting to do, but it doesn't work.
I edit and save, but the CA still indicates that it is an internal CA.
When I go back into edit the CA again, the key is still there. -
Hmm, yeah, I guess that doesn't let you remove the key.
Worst case scenario, back up the config, edit out the key, restore.
-
That does appear to be a bit of a bug.
I'll manually edit the xml.
Thanks. -
@Gil said in Removing a CA key:
That does appear to be a bit of a bug.
I'll manually edit the xml.
Thanks.Fix:
https://redmine.pfsense.org/issues/10509
