Skip to main content

Approve (or reject) a certificate revocation request

If you submit a request to revoke a TLS/SSL certificate, an administrator must approve the revocation request. Once the request is approved, DigiCert revokes the issued certificate.

Warning

Items to note before revoking a certificate

  • A revoked certificate is invalid and can’t be restored; in other words, it can’t be undone.

  • A revoked certificate loses remaining renewal time and can't be reissued or duplicated.

  • A website with a revoked certificate may show trust warnings to visitors.

Approve revocation request

  1. In CertCentral, in the left main menu, go to the Certificates > Requests.

    For CertCentral Subscription accounts, in the left main menu, go to the My Digital Trust Products > Requests.

  2. On the Requests page, in the Order # column, select the order number link for the certificate you want to revoke.

  3. In the Order # column, select the order number link for the certificate you want to revoke.

  4. In the Order # details pane on the right, select Approve.

    Warning

    In the Approve Request window, don't select Approve unless you’re sure that you want to revoke the certificate. A revoke can’t be undone

  5. In the Approve Request window, in the Approval Comment box, add a comment about the certificate revocation.

  6. Once ready, select Approve.

What's next

DigiCert revokes the certificate now.

Subscription accounts

If revoking an individual certificate or the certificate order, your CertCentral subscription doesn’t automatically mark the consumed domain as available. To make the consumed domain available again, open your subscription, find the domain, and remove it from the subscription.