IOS – How to delete a certificate that got restored from a backup under iOS 10/11

backupcertificateiosiphone

With iOS, certificates are installed as part of profiles. Deleting a certificate means removing the profile.

When an iPhone with profiles is backed up, and then the backup is restored to a new device, the profiles are no longer visible under Settings > General > Profiles. So, they can't be deleted via the usual way.

The certificates however get restored to the device. One can see them e.g. under Settings > General > About > Certificate Trust Settings.

Hence my question: How can these certificates be deleted from the device?

Best Answer

I found a certificate in my iOS device's Certificate Trust Settings. And it was not be found in Profiles. Finally I remove it by add the cert file again, and then I can found and remove it in Profiles.

At first, I can't found the cert file, because this CA was installed years ago. So I did these things:

Backup iPhone to Mac, View backup file by some software (I used iMazing)
Find TrustStore.sqlite3 in Backup/KeychainDomain/ and export it to HOME DIR.
Use this project https://github.com/ADVTOOLS/ADVTrustStore to export certfile
```
./iosCertTrustManager.py -t ~/TrustStore.sqlite3 -e ~/foo.crt
```
Airdrop or Email this crt file to iOS device, and install it.
Find it in Settings > General > Profiles and Remove it.
It disappear in "Certificate Trust Settings"

Done.

Best Answer

Related Solutions

IOS – Unable to import S/MIME certificate and key into the iPhone (iOS7)

IOS – How to remove SSL certificate exceptions on iOS

Related Question