• VMware NSX

The issue that was preventing the deletion of these certificates can be shown from the screenshot below. 

Running API Command:  GET /api/v1/cluster/nodes/<certificate-id>

"protection": 'REQUIRE_OVERIDE' is preventing the certificated from being deleted from the UI.

Using the command below to allow overwright and delete the CWS certificate below:

Log into NSX Manager and elevate to root.

curl -v -k -u admin -X DELETE -H 'X-Allow-Overwrite:true' 'https://localhost/api/v1/trust-management/certificates/<certificate-id>

If you are contacting Broadcom support about this issue, in order to aid a timely response and resolution, please provide the following:

• Logs for the manager the certificate is attached, if the manager no longer exists, another manager from the cluster.
• If known, type of Certificate, self signed, CA signed, PI certificate, service or platform certificate.
• Error message observed, text and screenshot.
• Results from the following API calls:
  • GET /api/v1/cluster/nodes/{node-id}
  • GET/api/v1/trust-management/certificates/{cert-id}

Handling Log Bundles for offline review with Broadcom support:

• Collecting Support bundles for Troubleshooting NSX-T
• Uploading files to cases on the Broadcom Support Portal
• Creating and managing Broadcom Support cases