How to Remove Certificates from Xiaomi Phone: A Complete Guide to Errors and Solutions

Xiaomi smartphone security certificates are digital passports that authenticate websites, apps, and networks, and are required for secure Wi-Fi connectivity, banking applications, or corporate VPNs. However, over time, unnecessary or outdated certificates accumulate that can slow down the system, cause connection errors, or even create vulnerabilities for hacker attacks, such as if you once connected to public Wi-Fi in a cafe and agreed to install their certificate, it could stay on the system and now interfere with work.

In this article, you will find step-by-step instructions for removing all types of certificates on Xiaomi, Redmi and POCO phones (including models on MIUI 12/13/14 and HyperOS). We will discuss how user (manually installed) and system (embedded) certificates differ, why some of them can not be removed without root rights, and what to do if banking applications stop working after cleaning.

Types of certificates on Xiaomi: which can be removed and which can not

On Xiaomi smartphones, certificates are divided into three main categories, and their โ€œremovabilityโ€ depends on the level of access:

  • ๐Ÿ”น User Certificates: You have manually installed (for example, to work with the user). VPN They can be deleted without consequences through standard settings.
  • ๐Ÿ”’ System Certificates: Built into the firmware MIUI/HyperOS They are responsible for authenticating system processes, and they can only be deleted with root rights (which voids the warranty).
  • ๐Ÿ›ก๏ธ Update certificates: used to verify the digital signature of firmware, their removal may result in inability to install OTA-update.

Wi-Fi certificates (e.g., 802.1X networks) are stored separately and removed via wireless network settings, and it is important that if you delete the certificate of the network you are connecting to at work or university, you may need to reconfigure the access from the administrator.

Type of certificateCan I remove it without root?Risks of removalWhere it's stored
User-generated (VPN, mail)โœ… Yes.Loss of access to the services for which it was installedSettings โ†’ Passwords and Security โ†’ Deletion of Certificates
System (Google, MIUI)โŒ No (root required)System malfunction, application errors/system/etc/security/cacerts/
Wi-Fi (802.1X)โœ… Yes.Inability to connect to a secure networkSettings โ†’ Wi-Fi โ†’ [Network] โ†’ Delete the certificate
Updates (OTA)โŒ No.Errors in installing firmware/system/etc/security/otacerts.zip

โš ๏ธ Note: If you see a name on the list of certificates, DST Root CA X3 Let's Encrypt Authority X3 โ€” These are outdated root certificates that can cause errors when connecting to some sites, and they can be deleted because they have been replaced with new versions.

How to remove user certificates on Xiaomi (without root)

This is the safest way, which is suitable for 90% of users, and the instructions are relevant for all Xiaomi, Redmi and POCO models on MIUI 12/13/14 and HyperOS:

  1. Open Settings and go to Passwords and Security (on some firmwares it may be called Additional โ†’ Privacy).
  2. Select Removal of Certificates (or Account Storage โ†’ User Certificates).
  3. Enter the password/graphic screen unlock key (if requested).
  4. You'll see a list of certificates you've installed, click on the one you want, and you'll confirm that you've deleted it.

If the Delete Certificates item is not on the menu, try an alternative path:

Settings โ†’ Applications โ†’ Application Management โ†’ Triplets (โ‹ฎ) โ†’ Special Access โ†’ Certificate Installation

Here you will see a list of applications that have installed certificates (such as OpenVPN or FortiClient).Click on the application and select Remove certificates.

Make a backup copy of important data|Remember the names of the certificates to be deleted (in case of restoration)|Check if they are used in banking applications|Restart the phone after removal-->

โš ๏ธ Note: If applications (e.g. Sberbank Online or Tinkoff) have stopped working after the certificate is deleted, try reinstalling them.Bank applications are often tied to specific security certificates.

Removal of Wi-Fi Certificates (802.1X)

Certificates for secure Wi-Fi networks (e.g., universities or offices) are removed separately, and cannot be seen in the general certificate list because they are linked to a specific access point:

  1. Go to Settings. โ†’ Wi-Fi.
  2. Click on the name of the network for which you want to delete the certificate and hold your finger for 2 seconds.
  3. In the menu that appears, select Change Network (or Delete if you want to completely erase settings).
  4. Scroll down to Certificates (or Security โ†’ Certificate CA) and click Delete.

If the network is not on the list, but you remember its name, try:

Settings โ†’ Passwords and security โ†’ Storage credentials โ†’ Wi-Fi certificates

This is where all certificates related to wireless networks are stored, and the removal will not affect other types of certificates.

What to do if the Wi-Fi certificate is not deleted?
If the Remove button is inactive, it means that the certificate is protected by device policies (e.g., on a work phone).In this case: 1. Try resetting the network settings (Settings โ†’ System โ†’ Reset โ†’ Reset Wi-Fi, mobile network and Bluetooth). 2. If it does not help, contact the network administrator - perhaps the certificate is tied to your account in the system (e.g., in Active Directory).

How to remove system certificates (for experienced users only)

System certificates are deleted only with root rights or through ADB. This is a risky operation, as it can lead to:

  • ๐Ÿšจ Application errors (e.g. Google Play Services) will stop working).
  • ๐Ÿ”„ Impossibility of updating MIUI (If you delete the signature certificates of firmware).
  • ๐Ÿ”’ Blocking certain features (such as Mi Pay or Face Unlock).

If you decide to delete the system certificate, follow the instructions:

  1. Get root access (for example, through Magisk).
  2. Install a file manager with root support (such as Root Explorer or FX File Explorer).
  3. Go to /system/etc/security/cacerts/.
  4. Find the certificate file (usually with the.0 or.crt extension) and delete it.
  5. Reboot the phone.

To remove via ADB (no root, but with unlocked bootloader):

adb shell


su




mount -o rw,remount /system




rm /system/etc/security/cacerts/[name certificate].0




mount -o ro,remount /system




reboot

โš ๏ธ Attention: Deleting system certificates can cause bootloop if you delete the critical file.Be sure to back up the partition before the operation /system through TWRP.

๐Ÿ“Š Have you ever deleted your Android system certificates?
Yes, through root.
Yes, through ADB.
No, but I want to try.
No, and no planning.

Errors in the removal of certificates and their solutions

Even if you follow the instructions correctly, you can have problems, and here are the most common mistakes and ways to correct them:

Mistake.Reason.Decision
Failed to remove the certificateThe certificate is protected by device policies (e.g. on the work phone)Contact the administrator or reset the security settings (Settings โ†’ System โ†’ Reset โ†’ Reset security settings)
After removal, the banking application does not workThe application is linked to a specific certificate (e.g. GlobalSign Root CA)Reinstall the app or restore the certificate from the backup
Wi-Fi is connected, but the internet is not working.Deleted network authentication certificate (e.g. eduroam)Reconfigure the network connection (a new certificate from the administrator may be required)
Certificate verification error when updating MIUIFirmware signature certificate (otacerts.zip) removedRestore the certificate from stock firmware or stitch your phone through Fastboot

If the phone starts to brake or overheat after the certificates are removed, it may be because the system is constantly trying to verify the authenticity of the deleted certificates.

  1. Restart your phone in Safe Mode (press the power button โ†’ Safe Mode).
  2. If the problem has disappeared, the third-party app is to blame.
  3. If the problem remains, reset settings (Settings โ†’ System โ†’ Reset โ†’ Reset all settings).

๐Ÿ’ก

If you deleted the certificate by mistake, try restoring it from a MIUI backup. Go to Settings โ†’ About Phone โ†’ Backup and Reset โ†’ Restore data and select the backup made before deleting.

How to check which certificates are installed on Xiaomi

Before you delete it, itโ€™s helpful to know which certificates are actually installed on your phone.

  • ๐Ÿ” Through settings MIUI: Settings โ†’ Passwords and security โ†’ Accounting repository โ†’ User certificates.
  • ๐Ÿ“ฑ Download it from Google Play โ€“ it will show all certificates, including system (but you will not be able to remove system ones without root).
  • ๐Ÿ’ป Through ADB: Connect your phone to your PC and execute the command: adb shell pm list packages -f | grep -i cert This will display a list of packages associated with certificates.

For advanced users: To see the full list of system certificates, including hidden ones, use the command:

adb shell ls -la /system/etc/security/cacerts/

This will show all the files in the certificate folder. The.0 file extension is the certificate in binary format. To read the contents, copy the file to your PC and open it through OpenSSL:

openssl x509 -inform DER -in [name file].0 -text

What to do if the certificates appear again after deletion

Sometimes deleted certificates are automatically restored, and this happens for two reasons:

  1. The app re-installes the certificate, for example, VPN-Customers (such as OpenVPN or NordVPN) or enterprise applications (such as Microsoft Intune) can restore their certificates the next time they run. โš ๏ธ Note: If you see a certificate called PortSwigger CA It reappears, which means that your phone has a security testing app (like Burp Suite) installed.
  2. The certificate is synced through a Xiaomi/Google account. If you have previously backed up certificates to the cloud, they can be restored when synced. To disable this: Settings โ†’ Accounts โ†’ [Your account] โ†’ Sync โ†’ Disable Certificates

If the certificate is returned, try:

  • ๐Ÿ”„ Remove the application that installs it (check in Settings) โ†’ Annexes โ†’ Application management โ†’ Installation of certificates).
  • ๐Ÿšซ Block the installation of certificates through ADB: adb shell pm disable-user --user 0 com.android.credentialmanager (To return back, use enable-user instead of disable-user.)
  • ๐Ÿ”ง Perform a reset of security settings: Settings โ†’ System system โ†’ Reset โ†’ Resetting security settings

๐Ÿ’ก

If the certificate reappears, itโ€™s a sign that itโ€™s critical to the operation of an app or service, in which case itโ€™s best to leave it to avoid problems with the functionality of the phone.

FAQ: Frequent questions about deleting certificates on Xiaomi

Can I delete certificates without a lock screen password?
No, to remove certificates. MIUI Always require a password confirmation, PIN-This is a security measure to prevent unauthorized changes. If you forget your password, first reset it through Find My Device (for a Google account) or Mi Account (for a Xiaomi account).
Why did some websites stop working after the certificates were deleted?
This happens if you delete the root certificate (such as Letโ€™s Encrypt or DigiCert) that is used for authentication. HTTPS-Browsers and applications are no longer trusting sites that are signed by this certificate. Solution: Restore a deleted certificate from the backup. Or install it manually (download from the official certifying authority website, such as Let's Encrypt). Or reset the network settings (Settings) โ†’ System system โ†’ Reset โ†’ Reset Wi-Fi, mobile network and Bluetooth).
How to remove certificates on Xiaomi with unlocked bootloader, but without root?
Without root, you can only delete user certificates through settings. System certificates require: TWRP (Custom recovery. Make a backup section /system. Connect to the phone through ADB mode TWRP manually remove certificate files from /system/etc/security/cacerts/. This is a risky method, as improperly changing system files can lead to a brick (breakdown) of the phone.
Can I delete certificates via a computer (for example, using the Mi PC Suite)?
No, Mi PC Suite doesn't provide any features for managing certificates. The only official ways are through phone settings (for custom certificates); through ADB (for power users); and the parts of programs like Mobogenie or Dr.Fone don't know how to handle certificates either, they're designed to manage files and applications.
How do I know which certificate is used by a particular application?
To do this: Install Network Connections Info from Google Play. Run it and select the Certificates tab. Open the app you want (like Sberbank Online) and see what certificates it uses to connect. Alternatively, use Packet Capture (like the HTTP Toolkit) to analyze traffic. But this method requires network protocol skills.