Ping a Specific Port

Question

AnalyticaL

Asked: 2024-01-30 18:42:25 +0800 CST2024-01-30 18:42:25 +0800 CST 2024-01-30 18:42:25 +0800 CST

Windows hello for business: remove certificate from virtual smartcard

772

I've managed to add a certificate to windows hello for signin to RDP.

See: https://learn.microsoft.com/en-us/windows/security/identity-protection/hello-for-business/rdp-sign-in?tabs=intune

However during testing i've generated a few faulty certificates, i would like to clean them up.

If i use certutil -delkey -csp "Microsoft Base Smart Card Crypto Provider" "ID" i get the message that the smartcard is read-only.

How can i clean up the certificates on the virtual smartcard provided by windows hello?

1 Answers

Voted

AnalyticaL · Answer 1 · 2024-02-02T15:34:33+08:00

Best Answer

AnalyticaL

2024-02-02T15:34:33+08:002024-02-02T15:34:33+08:00

I ended up using certutil -csp NGC -key to list all credentials stored in windows hello for business. Then I used certutil -csp NGC -delkey <name> to remove the ones that did not have login.windows.net in the name to clean up all other credentials.

This was not a 100% fix for me as intune seemed to have restored some of the old certificates, but at least i can manage the situation now.

1

Windows hello for business: remove certificate from virtual smartcard

Can you pass user/pass for HTTP Basic Authentication in URL parameters?

Ping a Specific Port

Check if port is open or closed on a Linux server?

How to automate SSH login with password?

How do I tell Git for Windows where to find my private RSA key?

What's the default superuser username/password for postgres after a new install?

What port does SFTP use?

Command line to list users in a Windows Active Directory group?

What is a Pem file and how does it differ from other OpenSSL Generated Key File Formats?

How to determine if a bash variable is empty?