How to clear CNNIC Certificate

How to clear CNNIC Certificate

Clear Windows certificates (applicable to IE, Chrome, and Safari)

To use IE, Chrome, or Safari in Windows, perform the following steps:

1. Run the Windows Certificate Manager (run certmgr. msc on the command line ).

2. Select "Trusted Root Certificate Authority" => "certificate ".

3. view the certificate list on the right. If the CNNIC certificate already exists, go to step 2.

4. Go to the "this page" to download the existing CNNIC certificate (to be decompressed ).

5. Right-click "Trusted Root Certificate Authority" => "certificate. Right-click "all tasks"> "import" in the context menu ".

6. An import wizard appears. Import the above CNNIC certificate to the certificate list according to the step-by-step instructions.

7. Right-click the CNNIC certificate. Right-click "properties" in the menu ".

8. In the displayed Properties dialog box, select "stop all purpose of this certificate" and confirm.

9. Finally, for the sake of insurance, import the three certificates into the "untrusted certificate" (similar to the above method ).

Note: The preceding operations only take effect for the current user. If your Windows system has multiple frequently-used user accounts, you need to make the above settings for each user.

Clear Apple Mac OS certificates (applicable to Safari and Chrome)

To use Safari or Chrome in Mac OS, perform the following steps: go to "utility" => "key string access" => "system root certificate" => "certificate", find the CNNIC certificate, double-click it, and change it to "Never trust ".

Clear Linux certificates (applicable to Chrome and Safari)

For Debian and Ubuntu systems, perform the following operations with administrator privileges:

Method 1: run the command dpkg-reconfigure ca-certificates to display a graphical interface. Disable CNNIC certificate and confirm.

Method 2: edit the/etc/ca-certificates.conf file and delete or comment out the line corresponding to the CNNIC certificate. Run the update-ca-certificates command to make it take effect.

Note: For other Linux releases, the operation is similar.

Clear Firefox certificates

Regardless of the operating system, as long as you use the Firefox browser (its certificate system is independent of the operating system), you need to perform the following steps:

1. Open the Options dialog box from the menu "Tools" => "options"

2. Switch to the "advanced" section, select the "encryption" tab, and click "view certificate.

3. In the certificate dialog box, switch to "Certificate Authority ".

4. The certificate list is in alphabetical order. Delete all CNNIC headers.

Note: If a certificate comes with Firefox, it will be deleted and the dialog box will be opened next time. The certificate is still in progress. But it doesn't matter. All its "Trust Settings" have been cleared.

Clear Opera Certificate

Regardless of the operating system, if you use the operabrowser (its certificate system is independent of the operating system), you need to perform the following steps:

1. Choose tools> preferences from the menu to open the preferences dialog box.

2. Switch to the "advanced" tab and select "security" on the left.

3. Click "manage certificate" to display a certificate dialog box. Switch to the Certificate Authority tab.

4. Find the CNNIC certificate and select it. Click "View". In the certificate Properties dialog box, deselect "allow connections to websites using this certificate ".

Note: This operation is based on Opera 10.10. The new version of the interface may be slightly different.

How to confirm that the portal has been cleaned up

For the sake of insurance, after completing the above clearance work, you need to visit the old rogue web site with a browser, the address is https://www.cnnic.cn remember to use HTTPS protocol Oh.

If your browser reports a problem with the certificate of the website, congratulations! Your portal has been cleaned up :-)

If the page of the website is successfully opened, you need to re-check to see if any of the above operations has gone wrong.

Possible side effects

Some Chinese websites have started to use the CNNIC certificate. Currently, 163 mailboxes are available. But Xiaoming is worried. After the certificate is removed, the browser will give a certificate security warning when accessing the above website. You only need to add a security exception.