Remove-DHASInactiveEncryptionCertificate

Removes the inactive encryption certificate.

Syntax

Remove-DHASInactiveEncryptionCertificate
      [[-Thumbprint] <String>]
      [-Force]
      [-WhatIf]
      [-Confirm]
      [<CommonParameters>]

Description

The Remove-DHASInactiveEncryptionCertificate cmdlet removes the inactive encryption certificate for the Device Health Attestation service.

You must have administrator rights to run this cmdlet.

Examples

Example 1: Remove the inactive encryption certificate

PS C:\> Remove-DHASInactiveEncryptionCertificate -Thumbprint "0123456789ABCDEF0123456789ABCDEF01234567"

Optional Parameters

-Confirm

Prompts you for confirmation before running the cmdlet.

Type:SwitchParameter
Aliases:cf
Position:Named
Default value:False
Accept pipeline input:False
Accept wildcard characters:False
-Force

Forces the command to run without asking for user confirmation.

Type:SwitchParameter
Position:Named
Default value:None
Accept pipeline input:False
Accept wildcard characters:False
-Thumbprint

Specifies the encryption certificate thumbprint. The value must contain only hexadecimal digits (0-9, A-F) and be 40 characters in length. This value is case-insensitive.

Type:String
Position:0
Default value:None
Accept pipeline input:True (ByValue)
Accept wildcard characters:False
-WhatIf

Shows what would happen if the cmdlet runs. The cmdlet is not run.

Type:SwitchParameter
Aliases:wi
Position:Named
Default value:False
Accept pipeline input:False
Accept wildcard characters:False