Remove-Adfs Certificate

Removes a certificate from AD FS.

Syntax

Remove-AdfsCertificate
      [-TargetCertificate] <ServiceCertificate>
      [-WhatIf]
      [-Confirm]
      [<CommonParameters>]
Remove-AdfsCertificate
      -CertificateType <String>
      -Thumbprint <String>
      [-WhatIf]
      [-Confirm]
      [<CommonParameters>]

Description

The Remove-AdfsCertificate cmdlet removes a certificate from Active Directory Federation Services (AD FS).

Examples

Example 1: Remove a token-signing certificate

PS C:\> Remove-AdfsCertificate -CertificateType "Token-Signing" -Thumbprint ‎"fedd995b45e633d4ef30fcbc8f3a48b627e9a28b"

This command removes a token-signing certificate from AD FS.

Required Parameters

-CertificateType

Specifies the type of the certificate to remove. The acceptable values for this parameter are:

  • Infocard-Signing
  • Service-Communications
  • Token-Encryption
  • Token-Signing
Type: String
Parameter Sets: Token-Decrypting, Token-Signing
Position: Named
Default value: None
Accept pipeline input: False
Accept wildcard characters: False
-TargetCertificate

Specifies the certificate to remove. This value is typically taken from the pipeline.

Type: ServiceCertificate
Position: 0
Default value: None
Accept pipeline input: True (ByValue)
Accept wildcard characters: False
-Thumbprint

Specifies the thumbprint of the certificate to remove.

Type: String
Position: Named
Default value: None
Accept pipeline input: True (ByValue)
Accept wildcard characters: False

Optional Parameters

-Confirm

Prompts you for confirmation before running the cmdlet.

Type: SwitchParameter
Aliases: cf
Position: Named
Default value: False
Accept pipeline input: False
Accept wildcard characters: False
-WhatIf

Shows what would happen if the cmdlet runs. The cmdlet is not run.

Type: SwitchParameter
Aliases: wi
Position: Named
Default value: False
Accept pipeline input: False
Accept wildcard characters: False

Inputs

Microsoft.IdentityServer.PowerShell.Resources.ServiceCertificate

A class structure that represents the service certificates for the Federation Service.

Outputs

None

Notes

  • Removing a certificate removes it only from the Active Directory Federation Services (AD FS) 2.0 configuration data. It does not remove or delete the certificate from the local certificate store on the server computer.