PKI Tutorials - Herong's Tutorial Examples - Version 2.04, by Dr. Herong Yang
Deleting Root CA Certificates from Firefox 35
This section provides a tutorial example on how to delete a certificate from Firefox 35. Deleted certificate can be re-installed back from a certificate file.
As you can see from the previous tutorial, the list of trusted root CA certificates in Firefox is quite long. It contains many root CA certificates you are probably never going to use them. If you want to, you can delete root CA certificates that are not needed from Firefox 35.
Here is what I did on Firefox 35 to delete the "VeriSign Class 3 Public Primary Certification Authority - G5" certificate, which is actually needed to validate the login.yahoo.com certificate. But I can delete it, because I have exported it to a file already.
1. Repeat steps listed in the previous tutorial until you see the Certificate Manager dialog box.
2. Go to the Authorities tab and select "VeriSign Class 3 Public Primary Certification Authority - G5".
4. Click the "Delete or Distrust" button, A warning message box shows up:
5. Read the warning message and click "OK":
You have requested to delete these CA certificates. For built-in certificates all trust will be removed, which has the same effect. Are you sure you want to delete or distrust? VeriSign Class 3 Public Primary Certification Authority - G5 If you delete or distrust a certificate authority (CA) certificate, this application will no longer trust any certificates issued by that CA.
6. Close Firefox 35.
The "VeriSign Class 3 Public Primary Certification Authority - G5" certificate is deleted from Firefox 35 now.
Last update: 2015.
Table of Contents