Skip to main content

Enviar una solicitud para revocar un certificado SSL/TLS.

Before DigiCert can revoke the certificate, an account administrator may need to approve the revocation request.

Aviso

Items to note before revoking a certificate:

  • A revoked certificate is invalid and can’t be restored; in other words, it can’t be undone.

  • A revoked certificate loses remaining renewal time and can't be reissued or duplicated.

  • A website with a revoked certificate may show trust warnings to visitors.

Before you begin

By default, if you revoke a TLS certificate on a certificate order, you also revoke the order and all associated certificates, including reissues and duplicates.

Do you want to keep the order active so you can replace the revoked certificates? Or do you need to revoke a single certificate on the order, such as a reissued certificate? Then read our Submit a request to revoke a single certificate on an order instructions.

Key compromise

If revoking a certificate because the private key was compromised, you may want DigiCert to revoke any valid DigiCert-issued certificates linked to the compromised key.

Go to DigiCert's Certificate Problem Reporting page to submit a request to revoke any valid DigiCert-issued certificates linked to the compromised key.

Submit a request to revoke a TLS/SSL certificate

  1. En su cuenta de CertCentral, en el menú principal izquierdo, vaya a la página Certificados > Pedidos.

    1. In the left menu, go to Certificates > Orders.

    2. On the Orders page, select the order number for the TLS certificate you want to revoke.

    3. For CertCentral Subscription accounts:

      1. In the left menu, go to My Digital Trust Products > Certificates.

      2. On the Certificates page, select the order number for the TLS certificate you want to revoke.

  2. En la página Pedidos, utilice las listas desplegables, el cuadro de búsqueda, las funciones de búsqueda avanzada (enlace Mostrar búsqueda avanzada) y los encabezados de las columnas para filtrar la lista de certificados.

  3. En la columna N.° de pedido, haga clic en el enlace Vista rápida para el certificado SSL/TLS que desea revocar.

    • Key compromise - My certificate's private key was lost, stolen, or otherwise compromised.

    • Cessation of operation - I no longer use or control the domain or email address associated with the certificate or no longer use the certificate.

    • Affiliation change - The name or any other information regarding my organization changed.

    • Superseded - I have requested a new certificate to replace this one.

    • Unspecified - none of the reasons above apply.

  4. En el panel de detalles Número de pedido (a la derecha), haga clic en el enlace Revocar certificado.

    As an admin, you can revoke the certificate without admin approval. To do this, under Do you want to revoke without additional admin approval, select Revoke this certificate immediately.

  5. En la página Solicitud para revocar certificado para pedido, en la casilla Motivo de la revocación, escriba el motivo por el que desea revocar el certificado (por ejemplo, ya no se necesita el certificado).

  6. Haga clic en Solicitar revocación.

Qué sigue

  • Once a CertCentral account administrator approves your revocation request DigiCert revokes the certificate.

  • Administrators only: If you selected Revoke this certificate immediately, DigiCert revokes the certificate now.

Subscription accounts

If revoking an individual certificate or the certificate order, your CertCentral subscription doesn’t automatically mark the consumed domain as available. To make the domain available again, open your subscription, find the domain, and remove the consumed domain from the subscription.