Blogs

How to completely remove the eDellRoot

by Ayushi Chauhan
FacebookTwitterLinkedinWhatsapp

A few years ago, Dell users were very upset about the eDellRoot certificate being on their computers. Dell gave in to growing public pressure and quickly put out an how to completely remove the eDellRootowners can use to automatically find the rogue certificate and remove it.

But it doesn’t look like everyone got the message that having eDellRoot on their computers makes them open to attacks over the Internet. After all, if the laptop maker installed the certificate, it must be safe, right?

Also, a lot of Dell users don’t know what that certificate is for or how it makes their PC vulnerable to online scams. This guide explains and reveals this fake security certificate, which can be used in man-in-the-middle attacks. People who bought Dell XPS, Inspiron, or G-5/G-7 laptops are mostly affected.

How to completely remove the eDellRoot

  • Completely remove the eDellRoot Right-click on the Start Button to open the WinX Menu. Click on Run.
  • In the Run box, type services.msc and hit Enter to open the Services Manager.
  • Here look for Dell Foundation Services.
  • Once you have located the Service, click on the Stop the service link.
  • Now open File Explorer and navigate to C:\Program Files\Dell\Dell Foundation Services folder.
  • Here, delete the Dell.Foundation.Agent.Plugins.eDell.dll file.
  • Finally, type certmgr.msc in the Run box and hit Enter to open the Certificates Manager.
  • Select eDellRoot. Once you have selected it, carefully click on the red X icon to delete the certificate.
  • Restart your Windows computer. The eDellRoot certificate will be completely removed.

What Is the eDellRoot Certificate?

EDellRoot is a secure certificate that has been included with some Dell computers made since 2015. eDellRoot is different from the other security certificates on the average laptop because it uses the same private key on all computers where it is installed. This makes it vulnerable.

Since hackers can use the cryptographic key they get from a Dell PC with this certificate installed to sign fake browser certificates, it is less safe to visit a website with HTTPS protection on a Dell computer that has this certificate installed. With the security key, hackers can easily make a fake certificate that tricks the browser into thinking the site is safe.

On a public network, criminals can listen in on web traffic and use the information they get for bad things. All of this trouble was caused by a certificate that Dell supposedly put in place to make it easier for customers to talk to the Dell support system.

FAQ

How do I clear certificates?

Select the Content Tab and select the Certificates button. In the Certificates window, select all of the certs and select remove. Select Yes or OK on the pop-up then select close.

Is it safe to delete all certificates?

If you remove these certificates, the operating system might not work as well or the computer might crash. So, even certificates that have expired can’t be taken out of the Windows certificate store. This is because backward compatibility requires these certificates.

What is a root certificate used for?

Root certificates are the cornerstone of authentication and security in software and on the Internet. They’re issued by a certified authority (CA) and, essentially, verify that the software/website owner is who they say they are.

Was this article helpful?
Yes0No0
You Might Be Interested In

This website uses cookies to improve your experience. We'll assume you're ok with this, but you can opt-out if you wish. Accept Read More