How to remove a Certificate from CA Authority?

Mayckel TS 21 Reputation points
2023-09-12T14:19:38.59+00:00

We have a Domain Certification Authority on Windows Server 2019 DC.

First, I have raised the hash algorithm from SHA1 to SHA256 and then renewed the root certificate with the new hash.

Second, I revoked the old SHA1 certificate. But then I noticed that this old certificate is still being deployed to the domain client computers. How can I prevent the old SHA1 certificate of being deployed or remove it from the CA database so I will only have the new SHA256 certificate?

Windows Server
Windows Server
A family of Microsoft server operating systems that support enterprise-level management, data storage, applications, and communications.
12,030 questions
Windows Server Security
Windows Server Security
Windows Server: A family of Microsoft server operating systems that support enterprise-level management, data storage, applications, and communications.Security: The precautions taken to guard against crime, attack, sabotage, espionage, or another threat.
1,712 questions
{count} votes