Policy selection for ADMX packs

Policy overview

Key metadata and intent for this policy.

ClassComputer

CategoryWindows Components > Smart Card

Supported onAt least Windows Vista

Supported OS tags: Windows10, Windows10RT, Windows11, Windows7, Windows8, Windows81, WindowsRT, WindowsRT81, WindowsServer2008, WindowsServer2012, WindowsServer2012R2, WindowsServer2016, WindowsVista

This policy setting allows you to manage the clean up behavior of root certificates. If you enable this policy setting then root certificate cleanup will occur according to the option selected. If you disable or do not configure this setting then root certificate clean up will occur on log off.

Internal name

CertPropRootCleanupString

Policy ID

54d3f7f746ed

Elements

Registry values

How enabled and disabled states update the registry.

No explicit registry values are set for enabled or disabled states.

Policy elements

Inputs and configuration options exposed by this policy.

Element	Type	Registry mapping	Constraints & behavior
Root certificate clean up options ID RootCertCleanupOption_Levels	enum	HKLM\SOFTWARE\Policies\Microsoft\Windows\CertProp\RootCertificateCleanupOption Type REG_DWORD	Options: No cleanup (0), Clean up certificates on smart card removal (1), Clean up certificates on log off (2)

Other policies in this category

Explore related policies at the same level.

View all policies in this category