Once a certificate is published to public CT logs, you can’t remove it from the logs. However, if you chose to keep a certificate out of public CT logs and then discover that you need it logged, you can fix the situation.
To get an unlogged public SSL/TLS certificate into public CT logs, reissue the certificate and uncheck the Don’t log this certificate to public CT logs check box so we can log it. The resulting reissued certificate will be logged in CT logs. The browser warnings will go away once you install the reissued certificate.
Changes to Reissued Certificates Don’t Affected Previously Issued Certificates (Original and Reissues)
When you reissue a certificate, any changes that you make to the reissued certificate don’t affect the original certificate (or previously reissued certificates). Changes only affect that reissued certificate and all reissued certificates going forward.
For example, if you order an SSL/TLS certificate and you choose to keep it out of public CT logs, the original certificate will never be logged to CT logs. However, if you reissue the certificate and allow it to be logged the reissued certificate will be logged to CT logs. Additionally, all reissued certificates going forward will be logged to CT logs, unless you specifically choose to have that reissued certificate kept out.
To get a duplicate certificate with a different CT logging setting, reissue the certificate and change the CT logging setting on the reissue certificate form.
DigiCert is the world's leading provider of scalable TLS/SSL, IoT and PKI solutions for identity and encryption. The most innovative companies, including 89% of the Fortune 500 and 97 of the 100 top global banks, choose DigiCert for its expertise in identity and encryption for web servers and Internet of Things devices. DigiCert supports TLS and other digital certificates for PKI deployments at any scale through its certificate lifecycle management solution, CertCentral®. The company is recognized for its enterprise-grade certificate management platform, fast and knowledgeable customer support, and market-leading security solutions. For the latest DigiCert news and updates, visit digicert.com or follow @digicert.
©2020 DigiCert, Inc. All rights reserved. DigiCert, its logo and CertCentral are registered trademarks of DigiCert, Inc. Norton and the Checkmark Logo are trademarks of NortonLifeLock Inc. used under license. Other names may be trademarks of their respective owners.