Android - How can I remove trusted CAs on Android?

In Android Lollipop 5.0
Settings → Security → Trusted credentials → User tab → Select your certificate → Scroll down, Click on Remove button → Done.

Lookout Mobile has blogged about this due to the DigiNotar events, and provided some pretty good (read: lengthy) instructions which you can find here.

The gist of it is that you need to pull /system/etc/security/cacerts.bks and then remove the CAs from the store, then push the store back to the device and reboot. Their instructions require that you have Bouncy Castle (for decrypting the store), root access, and a working adb connection. I'm not sure if this applies to all versions of Android or not, but my guess would be that the location of the CA store hasn't changed in quite some time (if ever).

lock screen and security. other security settings. view security certificates. users.

Then remove it.

S7 Edge 2016-07-14