removeCertFromSag

Purpose

Use this command to remove an acquired certificate from the SAG database. After the certificate is removed, it is not deleted, but it is no longer available to the SAG. To make it available to the SAG again, issue the acquireCertificate command, which is described in acquireCertificate.

Note: A certificate can be removed from and SAG only if none of the message partners of the SAG use that certificate (see Removing a certificate from an SAG).
Required access rights: See Table 4
Predefined roles that provide required access rights: See Table 2
Issue for OU: DNFSYSOU
Issue to service: DNFSAGCFG

Format

Read syntax diagramSkip visual syntax diagramremoveCertFromSagrmct-sagsag-certcertificate_name

Parameters

-sag sag
Name of the SAG.
-cert certificate_name
The name of the certificate. If the certificate is stored on an HSM, this name must be prefixed with HSMx:, where x represents the number of the HSM.

Examples

The following command removes the certificate cert1, which is stored directly on SAG1, from the SAG database: 
INST1.DNFSYSOU.DNFSAGCFG>rmct -sag SAG1 -cert cert1
The following command removes the certificate certest3, which is stored on HSM5 for SAG1, from the SAG database: 
INST1.DNFSYSOU.DNFSAGCFG>rmct -sag SAG1 -cert HSM5:certest3