Skip to main content

Revoke a single certificate on an order

Revoke one certificate on an order while keeping the order active so you can continue reissuing certificates on the order.

Before you begin

  • You need the serial number of the certificate you want to revoke. Locate the serial number on the Certificate history tab of the order.

  • Confirm that the certificate being revoked has been replaced before submitting the revocation request.

  • If revoking due to private key compromise, consider submitting a request to DigiCert's Certificate Problem Reporting page to revoke any valid DigiCert-issued certificates linked to the compromised key.

Submit a revocation request

For Enterprise, Partner, and Legacy accounts:

  1. In the CertCentral main menu, go to Certificates > Orders.

  2. Select the certificate order to revoke.

  3. Select the Certificate history tab.

  4. Locate the certificate to revoke and note the serial number.

  5. From the Actions menu next to the certificate, select Revoke.

  6. On the Request to Revoke Certificate page, select the revocation reason:

    • Key compromise: The certificate's private key was lost, stolen, or compromised.

    • Cessation of operation: The domain or email address associated with the certificate is no longer used or controlled.

    • Affiliation change: The organization name or other information changed.

    • Superseded: A new certificate has been requested to replace this one.

    • Unspecified: None of the above reasons apply.

  7. Add a comment if required.

  8. Select Request revocation.

For Subscription accounts:

  1. In the CertCentral main menu, go to My Digital Trust Products > Certificates.

  2. Select the certificate order to revoke.

  3. Select the Certificate history tab.

  4. Locate the certificate to revoke and note the serial number.

  5. From the Actions menu next to the certificate, select Revoke.

  6. On the Request to Revoke Certificate page, select the revocation reason:

    • Key compromise: The certificate's private key was lost, stolen, or compromised.

    • Cessation of operation: The domain or email address associated with the certificate is no longer used or controlled.

    • Affiliation change: The organization name or other information changed.

    • Superseded: A new certificate has been requested to replace this one.

    • Unspecified: None of the above reasons apply.

  7. Add a comment if required.

  8. Select Request revocation.

Notice

Administrators can revoke a single certificate without additional administrator approval. Under Do you want to revoke without additional admin approval, select Revoke this certificate immediately to bypass the approval step.

Revoking individual certificates on an order while keeping the order active allows you to continue reissuing certificates on the same order without losing the remaining order validity.

After submission, the revocation request remains pending until an administrator approves it. DigiCert revokes the selected certificate after the revocation request is approved.

What's next

Approve or reject a certificate revocation request to process a pending revocation request as an administrator

Dans cette section​: