Many unrecognized certificates in System Roots, delete is grayed out

Similar Messages

• Delete key grayed out in DM

  Curve 8320
  T-Mobil
  4.5.0.81
  DM 4.7
  XP SP 3
  I am trying to delete D2G.  In  Desktop Manager/add&remove applications   if I select ‘Documents to Go’ in the list of applications thedelete button is grayed out. I am of the impression DataViz requests the oldapplication (and all modules) be removed from the device and the computer (Ican’t use the OTA option).  Theyrecommend to remove D2G from the device, let it reboot, then delete D2G from thecomputer. It doesn’t matter if D2G is removed from the device or not, when Iselect it in Desktop manager the delete key is grayed out.  The delete key is grayed out if Ichoose other applications too.
  Why is the delete key grayed out?  If I remove D2G from the device, how canI remove D2G from the computer, before I install the update? Can I delete it from thecomputer manually?
  Solved!
  Go to Solution.

  My discussions with BB this morning say that applications installed during a device OS upgrade can not be deleted individually. Let me say you can remove them from the device individually, but not DeskTop Manager. You have to delete the file installed via the .zip file downloaded with the device OS update via Windoze's add/delete programs control panel. BB support says it should have a name "BlackBerry Handheld device code v.XXX", but I could not find such an application to remove, only DeskTop Manager.   Talking to BB support they say the delete key is always grayed out.

• Can not get Document recovery to stop trying to recovery a deliberately deleted file. Delet is grayed out.

  A Word 2007 file was permenantly deleted and now Document Recovery tries to restore it. When I try to "save as" or "open" I get the message that the file can't be found. I have tried regedit to empty the Document Recovery. There is one file that remains
  that I can't delete. I have turned off auto save under the Save tab and Allow background saves under the Advanced tab. There are 8 people that access the server. I've gone in and done the same thing for each of them. Shut down the server and brought it up.
  Nothing has helped. The operating system is 2003 Server.

  Hi
  Thank you for using
  Microsoft Office for IT Professionals Forums.
  From your description, If you cannot delete a file or a folder, you can follow this article steps to troubleshoot
   http://support.microsoft.com/kb/320081
  Or you can post this to Windows Server Forum
  http://social.technet.microsoft.com/Forums/en-us/category/windowsserver
  Please take your time to try the suggestions and let me know the results at your earliest convenience. If anything is unclear or if there is anything
  I can do for you, please feel free to let me know.
  Hope that helps.
  Sincerely
   William Zhou CHN

• Ripple delete is grayed out

  it seems interemittant how do I activate it?

  Yeah it must be something obvious, as sometimes I can do ripple delete, and sometimes I can't, in the same track.

• Undo redo cut copy paste delete are GRAYED out in mozilla

  windowsXP

  I chose to download a mpg file. It reads as a .mov after download. Shouldn't QT work? Or is it not really a .mov file?<<</div>
  It is downloaded as an mpeg file but when you used the browser plug-in you apparently chose "Save as Quicktime Movie." That puts a QT or .mov wrapper around the file. If you choose "Save as Source." the downloaded file should be saved exactly as the file was on the sending site.
  Even though the file may have a .mov icon it is still an mpeg inside the QT wrapper. QT will not support the editing of the file or allow the export of sound to any new format. QT Mpeg Limitations

• In photoshop elements 12 I try to delete a folder but the delete option is grayed out. how can I delete a folder from my catalogue?

  how can I delete folders from photoshop elements 12. the option to delete is grayed out an I don't know what the alternative options are

  Got it fixed!  The Folder was set to Open With Terminal!
  Maybe when you moved it over from your other system, the Open With got changed?  To change this, in your Finder, select the iPhoto library from your User/Pictures folder and do a Get Info on it Command+I.
  Then change the Open With to iPhoto application! 
  Then from the Finder, double click the iPhoto Folder and it will be opened with iPhoto!  WALLA it worked!

• Asmca has grayed out Volumes and ASM Cluster File Systems 11.2.0.3

  I've got a two node cluster which is up and running with the latest 11.2.0.3 grid install on Oracle Linux 6.3
  I need to get a shared storage location I can use for File I/O testing, ASM looks like the solution with an ASM Cluster File System.
  When I run asmca I do not have the ability to create these volumes or file systems as they are Grayed out.
  I found some instructions on how to get it to work, and they said to use acfsload to start up the required daemons:
  [root@oracleA bin]# ./acfsload start -s
  ACFS-9459: ADVM/ACFS is not supported on this OS version: '2.6.39-300.17.3.el6uek.x86_64'
  I installed Patches: 13146560, 14596051 - Which I thought would fix the problem. Rebooted after successfully applying the patches, but asmca still shows them greyed out
  and not supported on this OS error persists.
  I see some posts online saying to edit osds_acfslib.pm and update it to allow for the supported ORACLE version
  Right now it shows: ($release =~ /^oraclelinux-release/))) # Oracle Linux
  under /etc it only has oracle-release - could that have something to do with it not passing the check?
  uname -r
  2.6.39-300.17.3.el6uek.x86_64
  From what I can tell this kernal should support asm..
  Any help in getting these shared storage asm disks setup would be very helpful, oracleasm creates them and sees them fine for databases. Thanks.

  Turns out the Kernel version 2.6.39 does not have support for the ASM Drivers for the ACFS mounting.
  I'm going to have to use Oracle Linux 6.2 (instead of Oracle Linux 6.3) and rebuild my RAC to get a supported version of the drivers -> Kernel version 2.6.32
  http://docs.oracle.com/cd/E11882_01/install.112/e16763/oraclerestart.htm#BGBGEDGA

• Purchased song grayed out and can not delete

  I purchase a song and received a permission error. I clicked OK and assumed the download completed. I then purchase another song. There was no error message. Both songs appear in my Music and Purchase folders but the first song is grayed out with an exclamation mark in the first column. I tried to download it again and received a warning message saying I had already downloaded it and a second download would result in a duplicate. I tried to delete the grayed out download and could not.

  No available downloads under Store>Check for Available Downloads, but I found a "Download" folder under the "Store" folder. Clicked on that and selected resume and the download completed. The Downloaded folder the disappeared. All is well.

• How do I restore System Roots Certificates. They were all accidentally deleted

  Someone was working on my wife's mac, and they for some inexplicable reason deleted all of the certificates in the System Roots keychain.  I can't import them from my mac, because I can't import to the System Roots keychain.

  Those certificates are issued by Apple peroidically with Software Updates, but I read a way to update them more frequently.
  Hit your Keychain Access Preferences,
  Click Certificates
  OSCP: Best Attempt
  CRL: Best Attempt
  Priority: OSCP
  This might work, it will slightly reduce the speed of Secure Socket Layer (SSL) sites as it verifies each certificate in real time instead of from a file.
  If these setting are already set, then you know what happened.
  Try to visit a certain site that requires a certificate and see if everything works.

• How to delete system root certficates

  After reviewing system certficates and evaluating them, even though they're trusted, they appear to be foreign and suspicious to me.  not seeing any  association with aspecific app., I would like to delete them from MacBookAir.  How?   Thanks

  This is additional information to my original query.  I hope this helps for those who may have experienced the same issue and found a solution other than to blindly follow the sheep/Apple.  I love Apple products as I'm sure you do, but that doesn't mean we have to "settle" for certificates we know nothing about. 
  After opening Keychain Access and viewing the System Roots Certificates, I find one entitled, “China internet information Center EV Certificates Root”.  It evaluates as “Generic (Certificate chain validation only). 
  There are four more that appear suspicious to me also.  One is listed as “TÜBITAK UEKAE Kök Sertifica Hizmet Saglayicisi - Sürüm 3” in addition to two others with the same name, “TÜRKTRUST Elektronik Sertifika Hizmet Saglayicisi”.  One expires Sep16, 2015 and the other Dec 22, 2017
  Although I make an assumption that I must have clicked on something that enabled these, I cannot say with certainty whether I did nor not.  They look suspicious to me and I’m reluctant to use the keychain and I’m very tempted to remove Apple Pay from my iPhone because of these. 
  Just because they are valid, one never knows what is truly “necessary” and why they are there.  Seriously, if these kinds of certificates are valid, I would like to know what websites use them so I can avoid them in the future. 
  Does anyone have any comment or suggestions regarding these?  Thanks.

• Is there a list of valid system root certificate authorities for a vanilla OSX (Lion, Mountain Lion) installation?

  I'm looking for a current list of valid CAs to compare to those in system keychain.  thnxs!

  You can dump all of the root certificates with:
  security find-certificate -a -Z /System/Library/Keychains/SystemRootCertificates.keychain
  Here's a script I wrote a while ago as part of an attempt to mitigate CAs that I didn't want to trust... I work in a government environment, so it seems silly to trust CAs from China and Russia, as well as an assortment of other oddball countries.  Maybe it will help you find what you're looking for:
  #!/bin/sh
  if [ -f /tmp/rootcerts ]
  then
    rm -f /tmp/rootcerts
  fi
  if [ -f /tmp/rootcerts.sh ]
  then
    rm -f /tmp/rootcerts.sh
  fi
  if [ -f /tmp/ccs ]
  then
    rm -f /tmp/ccs
  fi
  echo ""
  echo "Script generated at /tmp/rootcerts.sh"
  echo ""
  security find-certificate -a -Z /System/Library/Keychains/SystemRootCertificates.keychain | sed 's/^\ \ \ \ //' | grep -v '^keychain\|^class\|^attributes\|^"cenc\|^"ctyp\|^"hpky\|^"issu\|^"alis\|^"skid \|^"snbr\|^"subj'| sed 'N;s/\n/@/' | sed 's/"labl"\<blob\>\=//' | sed 's/^SHA-1\ hash\:\ //' | sort -t'@' -k2 > /tmp/rootcerts
  while read line
  do
    SHA=`echo $line | cut -d'@' -f1`
    NAME=`echo $line | cut -d'@' -f2`
    NAME2=`echo $line | cut -d'@' -f2 | sed -e 's/^\"//' -e 's/\"$//'`
    security find-certificate -c "$NAME2" /System/Library/Keychains/SystemRootCertificates.keychain >/dev/null 2>&1
    if [ "$?" -eq "0" ]
    then
      APPL=0
      security find-certificate -c "$NAME2" /System/Library/Keychains/SystemRootCertificates.keychain | grep [Aa]pple >/dev/null 2>&1
      if [ "$?" -eq "0" ]
      then
        APPL=1
      fi
      DOD=0
      security find-certificate -c "$NAME2" /System/Library/Keychains/SystemRootCertificates.keychain | grep DoD >/dev/null 2>&1
      if [ "$?" -eq "0" ]
      then
        DOD=1
      fi
      CTRY=`security find-certificate -c "$NAME2" -p /System/Library/Keychains/SystemRootCertificates.keychain | openssl x509 -text | grep '^\ *Issuer:' | tr -s ' ' | cut -d' ' -f3 | sed -e 's/^C=//' -e 's/,$//' | sed 'y/abcdefghijklmnopqrstuvwxyz/ABCDEFGHIJKLMNOPQRSTUVWXYZ/'`
      case $CTRY in
        [A-Z][A-Z] ) if [ "$APPL" -eq "1" ]
                     then
                       echo "# $NAME - APPLE" >> /tmp/rootcerts.sh
                       echo "#security delete-certificate -Z $SHA /System/Library/Keychains/SystemRootCertificates.keychain" >> /tmp/rootcerts.sh
                       echo "" >> /tmp/rootcerts.sh
                     elif [ "$DOD" -eq "1" ]
                     then
                       echo "# $NAME - DoD" >> /tmp/rootcerts.sh
                       echo "#security delete-certificate -Z $SHA /System/Library/Keychains/SystemRootCertificates.keychain" >> /tmp/rootcerts.sh
                       echo "" >> /tmp/rootcerts.sh
                     else
                       echo "# $NAME - $CTRY" >> /tmp/rootcerts.sh
                       echo "security delete-certificate -Z $SHA /System/Library/Keychains/SystemRootCertificates.keychain" >> /tmp/rootcerts.sh
                       echo "" >> /tmp/rootcerts.sh
                     fi ;;
        * ) echo "# $NAME did not return a valid country code" >> /tmp/rootcerts.sh
            echo "security delete-certificate -Z $SHA /System/Library/Keychains/SystemRootCertificates.keychain" >> /tmp/rootcerts.sh
            echo "" >> /tmp/rootcerts.sh ;;
      esac
    else
      echo "$NAME could not be read" >> /tmp/rootcerts.sh
      echo "" >> /tmp/rootcerts.sh
    fi
  done</tmp/rootcerts
  ALL1=`security find-certificate -a /System/Library/Keychains/SystemRootCertificates.keychain | grep labl | wc -l`
  echo "There are $ALL1 certificates in SystemRootCertificates"
  echo ""
  ALL=`grep '^security' /tmp/rootcerts.sh | wc -l | sed 's/^\ *//' | grep -v '^$'`
  echo "There were $ALL certificates read and dumped into rootcerts.sh"
  echo ""
  NOCODE=`grep '^#.*did not return a valid country code' /tmp/rootcerts.sh | wc -l | sed 's/^\ *//' | grep -v '^$'`
  echo "There were $NOCODE certificates that did not return a country code"
  echo ""
  grep '^#.*\ \-\ ' /tmp/rootcerts.sh | sed 's/^#\ .*\ \-\ //g' | sort | uniq > /tmp/ccs
  for i in `cat /tmp/ccs`
  do
    NUM=`grep $i$ /tmp/rootcerts.sh | wc -l | sed 's/^\ *//' | grep -v '^$'`
    echo "There were $NUM entries in country code $i"
  done
  if [ -f /tmp/ccs ]
  then
    rm -f /tmp/ccs
  fi
  if [ -f /tmp/rootcerts ]
  then
    rm -f /tmp/rootcerts
  fi

• Too many invalid certificate errors.

  I am getting a dozen invalid certificate errors launching iTunes (all sites with the domain itunes.apple.com) but also for many https sites, including my bank.  I verified my date/time are set correctly.  Other suggestions? Please help.

  This could be a complicated problem to solve, as there are several possible causes for it.
  Back up all data, then take each of the following steps that you haven't already taken. Stop when the problem is resolved.
  Step 1
  From the menu bar, select
   ▹ System Preferences... ▹ Date & Time
  Select the Time Zone tab in the preference pane that opens and check that the time zone matches your location. Then select the Date & Time tab. Check that the data and time shown (including the year) are correct, and correct them if not.
  Check the box marked
  Set date and time automatically
  if it's not already checked, and select one of the Apple time servers from the menu next to it.
  Step 2
  Triple-click anywhere in the line below on this page to select it:
  /System/Library/Keychains/SystemCACertificates.keychain
  Right-click or control-click the highlighted line and select
  Services ▹ Show Info
  from the contextual menu.* An Info dialog should open. The dialog should show "You can only read" in the Sharing & Permissions section.
  Repeat with this line:
  /System/Library/Keychains/SystemRootCertificates.keychain
  If instead of the Info dialog, you get a message that either file can't be found, reinstall OS X.
  *If you don't see the contextual menu item, copy the selected text to the Clipboard (command-C). Open a TextEdit window and paste into it (command-V). Select the line you just pasted and continue as above.
  Step 3
  Launch the Keychain Access application in any of the following ways:
  ☞ Enter the first few letters of its name into a Spotlight search. Select it in the results (it should be at the top.)
  ☞ In the Finder, select Go ▹ Utilities from the menu bar, or press the key combination shift-command-U. The application is in the folder that opens.
  ☞ Open LaunchPad. Click Utilities, then Keychain Access in the icon grid.
  In the upper left corner of the window, you should see a list headed Keychains. If not, click the button in the lower left corner that looks like a triangle inside a square.
  In the Keychains list, there should be items named System and System Roots. If not, select
  File ▹ Add Keychain
  from the menu bar and add the following items:
  /Library/Keychains/System.keychain
  /System/Library/Keychains/SystemRootCertificates.keychain
  From the Category list in the lower left corner of the window, select Certificates. Look carefully at the list of certificates in the right side of the window. If any of them has a a blue-and-white plus sign or a red "X" in the icon, double-click it. An inspection window will open. Click the disclosure triangle labeled Trust to disclose the trust settings for the certificate. From the menu at the top, select
  When using this certificate: Use System Defaults
  Close the inspection window. You'll be prompted for your administrator password to update the settings. Revert all the certificates with non-default trust settings. Never again change any of those settings.
  Step 4
  Select My Certificates from the Category list. From the list of certificates shown, delete any that are marked with a red X as expired or invalid.
  Export all remaining certificates, delete them from the keychain, and reimport. For instructions, select
  Help ▹ Keychain Access Help
  from the menu bar and search for the term "export" in the help window. Export each certificate as an individual file; don't combine them into one big file.
  Step 5
  From the menu bar, select
  Keychain Access ▹ Preferences ▹ Certificates
  There are three menus in the window. Change the selection in the top two to Best attempt, and in the bottom one to  CRL.
  Step 6
  Triple-click anywhere in the line of text below on this page to select it:
  /var/db/crls
  Copy the selected text to the Clipboard by pressing the key combination command-C. In the Finder, select
  Go ▹ Go to Folder...
  from the menu bar and paste into the box that opens (command-V). You won't see what you pasted because a line break is included. Press return.
  A folder named "crls" should open. Move all the files in that folder to the Trash. You’ll be prompted for your administrator login password.
  Step 7
  Reboot, empty the Trash, and test.

• Restore System Roots

  How can I restore my System Roots certificates. So recently I was noticing that all HTTPS sites required me to "always trust" their certificate. Even Gmail/Facebok/etc.. I just found out that my system roots keychain was all empty. I tried repairing the keychain via first aid but it just couldn't be repaired.
  Error messages.
  Error: /System/Library/Keychains/SystemRootCertificates.keychain could not be found. Without it, many applications will be unable to establish secure network connections.
  Unable to restore /System/Library/Keychains/SystemRootCertificates.keychain. You will need to manually copy it from another machine, or reinstall the system software.
  Where can I get the keychain?

  can you restore the file /System/Library/Keychains/SystemRootCertificates.keychain from a backup? (Assuming you have a backup).  If not, you may need to re-install Lion.

• System Mail Delete Issue

  Each time I start Terminal I get the "You have mail." message. They are useless messages sent to me from MacScan, so I used to ignore them. I am done ignoring them and want to go in and delete them all. So, I run "mail" or "mailx" (both give me the same results) and then "d *". It doesn't give me an error, but when I "exit" mail and then go back in all the messages are still there. I continue to get the "You have mail." message whenever I start Terminal. I have tried all parameters for "d" including no parameters which should just delete the current message and still nothing. If I type "d <enter>" as many times as there are messages, then the next "d <enter>" will say, "No applicable messages" like it went through and deleted them all, but lo and behold, they are still there.
  Any thoughts? I have in the past gone through and found the actual messages on the system and deleted them that way, but I always forget where they are and am sick of hunting them down when it is completely unnecessary.
  Thanks.

  Hi,
  The 92x_64 directory will be created automatically once you run sapcar command.
  when you execute sapcar command from the current directory then the file and directory created in the SAR file will be created in the current directory. No need to create the directory manually before executing sapcar command.
  Thanks,
  Sudip.

• Too many open files in system cause database goes down

  Hello experts I am very worry because of the following problems. I really hope you can help me.
  some server features
  OS: Suse Linux Enterprise 10
  RAM: 32 GB
  CPU: intel QUAD-CORE
  DB: There is 3 instances RAC databases (version 11.1.0.7) in the same host.
  Problem: The database instances begin to report Error message: Linux-x86_64 Error: 23: Too many open files in system
  and here you are other error messages:
  ORA-27505: IPC error destroying a port
  ORA-27300: OS system dependent operation:close failed with status: 9
  ORA-27301: OS failure message: Bad file descriptor
  ORA-27302: failure occurred at: skgxpdelpt1
  ORA-01115: IO error reading block from file 105 (block # 18845)
  ORA-01110: data file 105: '+DATOS/dac/datafile/auditoria.519.738586803'
  ORA-15081: failed to submit an I/O operation to a disk
  At the same time I search into the /var/log/messages as root user and I the error notice me the same problem:
  Feb 7 11:03:58 bls3-1-1 syslog-ng[3346]: Cannot open file /var/log/mail.err for
  writing (Too many open files in system)
  Feb 7 11:04:56 bls3-1-1 kernel: VFS: file-max limit 131072 reached
  Feb 7 11:05:05 bls3-1-1 kernel: oracle[12766]: segfault at fffffffffffffff0 rip
  0000000007c76323 rsp 00007fff466dc780 error 4
  I think I get clear about the cause, maybe I need to increase the fs.file-max kernel parameter but I do not know how to set a good value. Here you are my sysctl.conf file and the limits.conf file:
  sysctl.conf
  kernel.shmall = 2097152
  kernel.shmmax = 17179869184
  kernel.shmmni = 4096
  kernel.sem = 250 32000 100 128
  fs.file-max = 6553600
  net.ipv4.ip_local_port_range = 1024 65000
  net.core.rmem_default = 4194304
  net.core.rmem_max = 4194304
  net.core.wmem_default = 262144
  net.core.wmem_max = 4194304
  limits.conf
  oracle soft nproc 2047
  oracle hard nproc 16384
  oracle soft nofile 1024
  oracle hard nofile 65536

  process limit
  bcm@bcm-laptop:~$ ulimit -a
  core file size          (blocks, -c) 0
  data seg size           (kbytes, -d) unlimited
  scheduling priority             (-e) 20
  file size               (blocks, -f) unlimited
  pending signals                 (-i) 16382
  max locked memory       (kbytes, -l) 64
  max memory size         (kbytes, -m) unlimited
  open files                      (-n) 1024
  pipe size            (512 bytes, -p) 8
  POSIX message queues     (bytes, -q) 819200
  real-time priority              (-r) 0
  stack size              (kbytes, -s) 8192
  cpu time               (seconds, -t) unlimited
  max user processes              (-u) unlimited
  virtual memory          (kbytes, -v) unlimited
  file locks                      (-x) unlimited