<div dir="ltr"><div><br></div><div>Discussion thread related Root CA certificate managment proposal <a href="https://lists.ozlabs.org/pipermail/openbmc/2019-April/016136.html">https://lists.ozlabs.org/pipermail/openbmc/2019-April/016136.html</a></div><div><pre>*Deleting Certificates*
This option is required for deleting invalid/expired/compromised
certificates. Existing CertificateService schema doesn’t support to delete
the installed certificates. Also “deletable” option is disabled ((
deletable= false)) in the CertificateCollection Schema (
<a href="https://redfish.dmtf.org/schemas/CertificateCollection.json">https://redfish.dmtf.org/schemas/CertificateCollection.json</a>) .<br><br></pre><pre>When we discussed during 2Q 2019 with DMTF, no certificate schema available to handle root CA certificates. <br>DMTF was ok to extend existing certificate schema to support Root CA ( see proposal for details) till the Root CA schema is available.<br><br></pre><pre><br></pre><pre><br></pre></div></div><br><div class="gmail_quote"><div dir="ltr" class="gmail_attr">On Sat, Mar 6, 2021 at 4:55 AM Derick Montague <<a href="mailto:Derick.Montague@ibm.com">Derick.Montague@ibm.com</a>> wrote:<br></div><blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex"> <br>
> I can't explain why the TrustStore certificate isn't deletable, that seems like a bug in webui-vue. <br>
<br>
That is the only certificate type that can be deleted.<br>
<br>
<a href="https://github.com/openbmc/webui-vue/blob/d6752694d31362bd42c3cbb51a35d36fa2bc25e1/src/views/AccessControl/SslCertificates/SslCertificates.vue#L179-L184" rel="noreferrer" target="_blank">https://github.com/openbmc/webui-vue/blob/d6752694d31362bd42c3cbb51a35d36fa2bc25e1/src/views/AccessControl/SslCertificates/SslCertificates.vue#L179-L184</a><br>
<br>
</blockquote></div>