When the default keyring is expiring and you have created a new default keyring to replace it, you want to remove all previous references to that particular default keyring and need to know where to remove it from

By default, the default keyring is referenced and used for the following.

1. HTTPS Management Console 
To remove it, go to Services-Management Services->HTTPS Console->Edit and change the default keyring from there to the new one

2. SSL Proxy
To change this, Proxy Settings->SSL Proxy->Change the Issuer keyring to the new keyring

3. If you have any SSL Intercept Action object, you need to remove/change it from there as well.

Once the default keyring is expired, it's reference can be removed from the above configuration area with a new keyring. The default Keyring can not be deleted from the appliance while the SGOS version is 6.7.x or 7.3.x .Only performing factory default on the proxy will generate new default keyring. Starting with SGOS 7.4.x default keyring can be deleted from the appliance once all the refence of the default keyring is replaced with another new keyring.