Skip to main content

SSL/TLSサーバ証明書の失効申請を送信する

Before DigiCert can revoke the certificate, an account administrator may need to approve the revocation request.

警告

Items to note before revoking a certificate:

  • A revoked certificate is invalid and can’t be restored; in other words, it can’t be undone.

  • A revoked certificate loses remaining renewal time and can't be reissued or duplicated.

  • A website with a revoked certificate may show trust warnings to visitors.

Before you begin

By default, if you revoke a TLS certificate on a certificate order, you also revoke the order and all associated certificates, including reissues and duplicates.

Do you want to keep the order active so you can replace the revoked certificates? Or do you need to revoke a single certificate on the order, such as a reissued certificate? Then read our Submit a request to revoke a single certificate on an order instructions.

Key compromise

If revoking a certificate because the private key was compromised, you may want DigiCert to revoke any valid DigiCert-issued certificates linked to the compromised key.

Go to DigiCert's Certificate Problem Reporting page to submit a request to revoke any valid DigiCert-issued certificates linked to the compromised key.

Submit a request to revoke a TLS/SSL certificate

  1. CertCentralアカウントの左側にあるメインメニューで、[証明書]>[オーダー]ページの順に進みます。

    1. In the left menu, go to Certificates > Orders.

    2. On the Orders page, select the order number for the TLS certificate you want to revoke.

    3. For CertCentral Subscription accounts:

      1. In the left menu, go to My Digital Trust Products > Certificates.

      2. On the Certificates page, select the order number for the TLS certificate you want to revoke.

  2. [オーダー]ページのドロップダウン、検索ボックス、高度な検索機能([高度な検索を表示する]リンク)、および列のヘッダーを使用して、証明書のリストをフィルタリングします。

  3. [オーダー番号]列で、失効させるSSL/TLSサーバ証明書の[クイックビュー]リンクをクリックします。

    • Key compromise - My certificate's private key was lost, stolen, or otherwise compromised.

    • Cessation of operation - I no longer use or control the domain or email address associated with the certificate or no longer use the certificate.

    • Affiliation change - The name or any other information regarding my organization changed.

    • Superseded - I have requested a new certificate to replace this one.

    • Unspecified - none of the reasons above apply.

  4. [オーダー番号]詳細ペイン(右側)で、[証明書を失効する]リンクをクリックします。

    As an admin, you can revoke the certificate without admin approval. To do this, under Do you want to revoke without additional admin approval, select Revoke this certificate immediately.

  5. [オーダー番号XXXの証明書の失効を申請する]ページの[失効の理由]ボックスに、証明書を失効させる理由を入力します(証明書が必要なくなったなど)。

  6. [失効を申請する]をクリックします。

次のステップ

  • Once a CertCentral account administrator approves your revocation request DigiCert revokes the certificate.

  • Administrators only: If you selected Revoke this certificate immediately, DigiCert revokes the certificate now.

Subscription accounts

If revoking an individual certificate or the certificate order, your CertCentral subscription doesn’t automatically mark the consumed domain as available. To make the domain available again, open your subscription, find the domain, and remove the consumed domain from the subscription.