Utilizing Certutil Tool to Purge the URL Cache

1 year ago

Ruian Ding

1 minute

I recently came across a scenario where a Windows Hello for Business sign-in failure occurred due to the inability to retrieve the CDP (CRL Distribution Points) information. Despite configuring the CDP as an HTTP-based URL and confirming its accessibility through a web browser, the issue persisted.

Eventually, we identified a potential culprit: URL cache stored on the computer might be causing the problem. By executing the following command, we were able to effectively clear the URL cache, leading to the successful resolution of the issue.

ipconfig /flushdns
certutil -urlcache * delete
certutil -setreg chain\ChainCacheResyncFiletime @now

#WHFB