REMOVE Subcommand

The REMOVE subcommand disassociates a certificate and a key ring.
acf2src
The REMOVE subcommand disassociates a certificate and a key ring. A key ring is a collection of digital certificates that are associated with an individual user.
REMOVE Certdata(
user01.suffix
)|USER(
userid1
) KEYRING(
userid2.suffix
) RINGNAME(
ringname
) LABEL(
label
)
Example: Remove keyring association
As a security administrator, you manage what users can share digital certificates across multiple servers. USER02 no longer needs to be associated with keyring user01.
REMOVE CERTDATA(
user02
) LABEL(
user02 certificate
) KEYRING(
user01
) RINGNAME(
user01 key ring
)
In this example, CERTDATA record user02 is removed from keyring user01.
  • CERTDATA(
    userid1.suffix
    )
    Specifies the record key of a CERTDATA record to remove from a key ring. Userid1 is a one- to eight-character userid associated with the CERTDATA record. The suffix is one- to eight-characters used to make the record key unique. The suffix is separated from the userid by a period. If LABEL is specified in addition to suffix, suffix and the label must refer to the same CERTDATA record.
  • USER(
    userid
    )
    Removes the connection to the certificates connected with a corresponding CONNECT command that is issued with the USER parameter. This value does not remove certificates for the USER connected with the CERTDATA parameter.
  • KEYRING(
    user02.suffix
    )
    Specifies the record key of a KEYRING record from which to remove the certificate. User02 is a one- to eight-character userid associated with the KEYRING record. The suffix is one- to eight-characters used to make the record key unique. The suffix is separated from the userid by a period, and cannot be specified when RINGNAME is used.
  • RINGNAME(
    ringname
    )
    Specifies the ring name of a KEYRING record from which to remove the certificate. The ring name can be up to 237 characters long.
  • LABEL(
    label
    )
    Specifies the label of a CERTDATA record form which to disassociate a key ring. The label can be up to 32 characters long. The label can contain blanks and mixed-case characters.