Remove-CAAuthority Information Access

Removes AIA or OCSP URI from the AIA extension set on the certification authority.

Syntax

Remove-CAAuthorityInformationAccess
      [-Uri] <String>
      [-AddToCertificateAia]
      [-Force]
      [-WhatIf]
      [-Confirm]
      [<CommonParameters>]
Remove-CAAuthorityInformationAccess
      [-Uri] <String>
      [-AddToCertificateOcsp]
      [-Force]
      [-WhatIf]
      [-Confirm]
      [<CommonParameters>]

Description

The Remove-CAAuthorityInformationAccess cmdlet removes the Authority Information Access (AIA) or Online Certificate Status Protocol (OCSP) uniform resource information (URI) from the AIA extension set on the certification authority.

Examples

Example 1: Remove AIA for a specified URI

PS C:\> Remove-CAAuthorityInformationAccess -Uri "http://www.contoso.com/pki/orca1.crt" -AddToCertificateAIA

This command removes AIA for the specified URI named http://www.contoso.com/pki/orca1.crt .

Example 2: Remove OCSP for a specified URI

PS C:\> Remove-CAAuthorityInformationAccess -Uri "http://www.cpandl.com/ocsp/" -AddToCertificateOCSP

This command removes the OCSP for the specified URI named http://www.cpandl.com/ocsp .

Example 3: Remove all AIA and OCSP entries for a specified URI

PS C:\> Remove-CAAuthorityInformationAccess -Uri "http://www.contoso.com/pki/orca1.crt"

This command removes all AIA and OCSP entries that match the URL http://www.contoso.com/pki/orca1.crt .

Required Parameters

-Uri

Specifies the URI from where the certificate for the CA can be downloaded or the online responder information can be obtained. This information is added to the CA properties and registry.

Type: String
Position: 1
Default value: None
Accept pipeline input: True (ByPropertyName, ByValue)
Accept wildcard characters: False

Optional Parameters

-AddToCertificateAia

Indicates that the cmdlet adds the AIA URI.

Type: SwitchParameter
Position: Named
Default value: None
Accept pipeline input: True (ByPropertyName)
Accept wildcard characters: False
-AddToCertificateOcsp

Indicates that the cmdlet adds an Online Responder's URI.

Type: SwitchParameter
Position: Named
Default value: None
Accept pipeline input: True (ByPropertyName)
Accept wildcard characters: False
-Confirm

Prompts you for confirmation before running the cmdlet.

Type: SwitchParameter
Aliases: cf
Position: Named
Default value: None
Accept pipeline input: False
Accept wildcard characters: False
-Force

Forces the command to run without asking for user confirmation.

Type: SwitchParameter
Position: Named
Default value: None
Accept pipeline input: False
Accept wildcard characters: False
-WhatIf

Shows what would happen if the cmdlet runs. The cmdlet is not run.

Type: SwitchParameter
Aliases: wi
Position: Named
Default value: None
Accept pipeline input: False
Accept wildcard characters: False

Inputs

System.String

Outputs

Microsoft.CertificateServices.Administration.Commands.CA.AuthorityInformationAccessResult

Notes

  • You must be a member of Enterprise Admins group to successfully run this command.