How to Remove an Expired Cross Certificate from your Token

Feb 19, 2024

How to Remove an Expired Cross Certificate from your Token


This article will walk you through removing an expired Cross Certificate from your token. The resolution below is also applicable in all instances that require a Certificate whether that be an AATL or Code Sign (Standard & EV). If this is not the solution you are looking for, please search for the solution in the search bar above.



  1. Open the SafeNet Authentication Client Tools as shown in the diagram below.
  2. Click the Gear Icon on the top right of the window for Advanced View. This will redirect you to the next window. 
  3. Click your token (may be named differently) and then click CA Certificates to show the list of installed CA Certificates in your token.
  4. Select the expiring Cross Certificate and then click the Delete Certificate button. A dialogue box will appear, click Yes to proceed. Note: You will be required to input your Token Password, to complete this process.
  5. You are now done removing the Expired Cross Certificate from your token. 

After you have completed this process, you may now proceed on importing the new Cross Certificate to your token.

Related Articles

GlobalSign System Alerts

View recent system alerts.

View Alerts

Atlas Discovery

Scan your endpoints to locate all of your Certificates.

Sign Up

SSL Configuration Test

Check your certificate installation for SSL issues and vulnerabilities.

Contact Support