Skip to main content

Envoyer une demande de révocation de certificat SSL/TLS

Before DigiCert can revoke the certificate, an account administrator may need to approve the revocation request.

Avertissement

Items to note before revoking a certificate:

  • A revoked certificate is invalid and can’t be restored; in other words, it can’t be undone.

  • A revoked certificate loses remaining renewal time and can't be reissued or duplicated.

  • A website with a revoked certificate may show trust warnings to visitors.

Before you begin

By default, if you revoke a TLS certificate on a certificate order, you also revoke the order and all associated certificates, including reissues and duplicates.

Do you want to keep the order active so you can replace the revoked certificates? Or do you need to revoke a single certificate on the order, such as a reissued certificate? Then read our Submit a request to revoke a single certificate on an order instructions.

Key compromise

If revoking a certificate because the private key was compromised, you may want DigiCert to revoke any valid DigiCert-issued certificates linked to the compromised key.

Go to DigiCert's Certificate Problem Reporting page to submit a request to revoke any valid DigiCert-issued certificates linked to the compromised key.

Submit a request to revoke a TLS/SSL certificate

  1. Dans votre compte CertCentral, dans le menu à gauche, cliquez sur la page Certificates > Orders (Certificats > Commandes).

    1. In the left menu, go to Certificates > Orders.

    2. On the Orders page, select the order number for the TLS certificate you want to revoke.

    3. For CertCentral Subscription accounts:

      1. In the left menu, go to My Digital Trust Products > Certificates.

      2. On the Certificates page, select the order number for the TLS certificate you want to revoke.

  2. Sur la page Orders (Commandes), utilisez les menus déroulants, la zone de recherche, les fonctions de recherche avancées (Show Advanced Search [Afficher les fonctions de recherche avancées]) et les en-têtes de colonne pour filtrer la liste de certificats.

  3. Dans la colonne Order # (N° de commande), cliquez sur le lien Quick View (Aperçu rapide) correspondant au certificat à révoquer.

    • Key compromise - My certificate's private key was lost, stolen, or otherwise compromised.

    • Cessation of operation - I no longer use or control the domain or email address associated with the certificate or no longer use the certificate.

    • Affiliation change - The name or any other information regarding my organization changed.

    • Superseded - I have requested a new certificate to replace this one.

    • Unspecified - none of the reasons above apply.

  4. Dans le volet de détails Order Number (N° de commande) à droite, cliquez sur le lien Revoke Certificate (Révoquer le certificat).

    As an admin, you can revoke the certificate without admin approval. To do this, under Do you want to revoke without additional admin approval, select Revoke this certificate immediately.

  5. Sur la page Request to Revoke Certificate for Order # (Demander la révocation du certificat pour la commande N°), dans la case Reason for Revocation (Motif de révocation), saisissez la raison pour laquelle vous souhaitez révoquer ce certificat (par ex., le certificat n’est plus nécessaire).

  6. Cliquez sur Request Revocation (Demander la révocation).

Et ensuite ?

  • Once a CertCentral account administrator approves your revocation request DigiCert revokes the certificate.

  • Administrators only: If you selected Revoke this certificate immediately, DigiCert revokes the certificate now.

Subscription accounts

If revoking an individual certificate or the certificate order, your CertCentral subscription doesn’t automatically mark the consumed domain as available. To make the domain available again, open your subscription, find the domain, and remove the consumed domain from the subscription.