caddy-untrust - Untrusts a locally-trusted CA certificate

       Untrusts a root certificate from the local trust store(s).

       This  command  uninstalls  trust;  it  does not necessarily delete the root certificate from trust stores
       entirely. Thus, repeatedly trusting and untrusting new certificates can fill up trust databases.

       This command does not delete or modify certificate files from Caddy's configured storage.

       This command can be used in one of two ways. Either by specifying  which  certificate  to  untrust  by  a
       direct  path to the certificate file with the --cert flag, or by fetching the root certificate for the CA
       from the admin API (default behaviour).

       If the admin API is used, then the CA defaults to 'local'. You may specify the ID of another CA with  the
       --ca  flag. By default, this will attempt to connect to the Caddy's admin API running at 'localhost:2019'
       to fetch the root certificate.  You may explicitly specify the --address, or use  the  --config  flag  to
       load the admin address from your config, if not using the default.

       10-May-2025 Auto generated by spf13/cobra

Auto generated by spf13/cobra                       May 2025                                            Caddy(8)

       caddy-untrust - Untrusts a locally-trusted CA certificate

--adapter=""      Name of config adapter to apply (if --config is used)

       --address=""      Address of the administration API listener (if --config is not used)

       --ca=""      The ID of the CA to untrust (defaults to 'local')

       --cert=""      The path to the CA certificate to untrust

       --config=""      Configuration file (if --address is not used)

       -h, --help[=false]      help for untrust

caddy(8)

caddyuntrust[flags]