Comments on this page are supposed to improve article content and no technical support is provided. For technical questions, please visit project home page at: https://github.com/Crypt32/PSPKI

Remove-AuthorityInformationAccess

[This command requires installed Remote Server Administration Tools (RSAT)]

Remove-AuthorityInformationAccess

Synopsis

Removes existing Authority Information Access (AIA) URI from Certification Authority configuration.

Syntax

Remove-AuthorityInformationAccess [-InputObject] <AuthorityInformationAccess[]> [[-URI] <String[]>] [<CommonParameters>]

Description

Removes existing Authority Information Access (AIA) URI from Certification Authority configuration. This command doesn't change actual settings, but just prepares AIA URIs.

You should carefully choose URIs to remove. If you incorrectly remove working and used URIs issued certificates validation may fail and certificate will be rejected.

Parameters

-InputObject <AuthorityInformationAccess[]>

Specifies the AIA object to process. This object can be retrieved by running Get-AuthorityInformationAccess command.

Required? True
Position? 0
Default value  
Accept pipeline input? true (ByValue, ByPropertyName)
Accept wildcard characters? False

-URI <String[]>

Specifies exact or partial pattern for URI to remove. This parameter accepts wildcards: '*' and '?'.

* - is used as multiple character wildcard
? - is used as single character wildcard

Note: be careful with this command. If you remove existing and working URLs certificate chain building may fail.

Required? False
Position? 1
Default value  
Accept pipeline input? false
Accept wildcard characters? False

<CommonParameters>

This cmdlet supports the common parameters: Verbose, Debug,
ErrorAction, ErrorVariable, InformationAction, InformationVariable,
WarningAction, WarningVariable, OutBuffer, PipelineVariable and OutVariable.
For more information, see about_CommonParameters (http://go.microsoft.com/fwlink/?LinkID=113216).

Inputs

PKI.CertificateServices.AuthorityInformationAccess

Outputs

PKI.CertificateServices.AuthorityInformationAccess

Notes

Author: Vadims Podans
Blog: https://www.sysadmins.lv

Examples

Example 1

PS C:\> Get-CertificationAuthority -Name MyCA | Get-AuthorityInformationAccess | Remove-AuthorityInformationAccess -URI "*c:\windows*" | Set-AuthorityInformationAccess -RestartCA

This example will remove all AIA URIs that contains "c:\windows" pattern. After command completion certificate services will be restarted to immediately apply changes.

Example 2

PS C:\> Get-CertificationAuthority -Name MyCA | Get-AuthorityInformationAccess | Remove-AuthorityInformationAccess -URI "*ldap://*" | Set-AuthorityInformationAccess -RestartCA

This example will remove all URIs that are used for CRT file publication and/or retrieval from Active Directory. After command completion certificate services will be restarted to immediately apply changes.

Related links

Get-CertificationAuthority
Connect-CertificationAuthority
Get-AuthorityInformationAccess
Add-AuthorityInformationAccess
Set-AuthorityInformationAccess

PowerShell Support

  • PowerShell 3.0

Operating System Support

  • Windows Server 2003 all editions
  • Windows Server 2008 all editions
  • Windows Server 2008 R2 all editions
  • Windows Server 2012 all editions
  • Windows Server 2012 R2 all editions

Comments:

Captcha