Remove a Server Certificate (IIS 7)

Applies To: Windows 7, Windows Server 2008, Windows Server 2008 R2, Windows Vista

Delete a certificate if one or more of the following situations occurs:

  • You assume ownership, as either the sole user or a shared user, of a computer that has certificates assigned to a user who is no longer using the computer.

  • You think the security of a computer may have been compromised and that the certificate is on the Certificate Revocation List (CRL).

  • You think a certificate has been corrupted.


When you remove a server certificate, the certificate is removed from the certificate store of that server.


For information about the levels at which you can perform this procedure, and the modules, handlers, and permissions that are required to perform this procedure, see Server Certificates Feature Requirements (IIS 7).

Exceptions to Feature Requirements

  • None

To view a list of certificates

You can perform this procedure by using the user interface (UI).

User Interface

To use the UI

  1. Open IIS Manager and navigate to the level you want to manage. For information about opening IIS Manager, see Open IIS Manager (IIS 7). For information about navigating to locations in the UI, see Navigation in IIS Manager (IIS 7).

  2. In Features View, double-click Server Certificates.

  3. Select the server certificate you want to remove and click Remove in the Actions pane.


Removing a server certificate may cause dependent services or programs to stop working.

  1. In the Confirm Remove dialog box, click Yes.

Command Line





Use the following WMI classes, methods, or properties to perform this procedure:

  • None

For more information about WMI and IIS, see Windows Management Instrumentation (WMI) in IIS 7. For more information about the classes, methods, or properties associated with this procedure, see the IIS WMI Provider Reference on the MSDN site.

See Also


Configuring Server Certificates in IIS 7