Skip to main content

提交撤銷 SSL/TLS 憑證的要求

Before DigiCert can revoke the certificate, an account administrator may need to approve the revocation request.

Warning

Items to note before revoking a certificate:

  • A revoked certificate is invalid and can’t be restored; in other words, it can’t be undone.

  • A revoked certificate loses remaining renewal time and can't be reissued or duplicated.

  • A website with a revoked certificate may show trust warnings to visitors.

Before you begin

By default, if you revoke a TLS certificate on a certificate order, you also revoke the order and all associated certificates, including reissues and duplicates.

Do you want to keep the order active so you can replace the revoked certificates? Or do you need to revoke a single certificate on the order, such as a reissued certificate? Then read our Submit a request to revoke a single certificate on an order instructions.

Key compromise

If revoking a certificate because the private key was compromised, you may want DigiCert to revoke any valid DigiCert-issued certificates linked to the compromised key.

Go to DigiCert's Certificate Problem Reporting page to submit a request to revoke any valid DigiCert-issued certificates linked to the compromised key.

Submit a request to revoke a TLS/SSL certificate

  1. 在您的 CertCentral 帳戶的左側主功能表中,前往憑證 > 訂單頁面。

    1. In the left menu, go to Certificates > Orders.

    2. On the Orders page, select the order number for the TLS certificate you want to revoke.

    3. For CertCentral Subscription accounts:

      1. In the left menu, go to My Digital Trust Products > Certificates.

      2. On the Certificates page, select the order number for the TLS certificate you want to revoke.

  2. 訂單頁面上,使用下拉清單、搜尋方塊、進階搜尋功能 (顯示進階搜尋連結) 和欄標題以篩選憑證的清單。

  3. 訂單編號欄中,按一下用於您要撤銷的 SSL/TLS 憑證的快速檢視連結。

    • Key compromise - My certificate's private key was lost, stolen, or otherwise compromised.

    • Cessation of operation - I no longer use or control the domain or email address associated with the certificate or no longer use the certificate.

    • Affiliation change - The name or any other information regarding my organization changed.

    • Superseded - I have requested a new certificate to replace this one.

    • Unspecified - none of the reasons above apply.

  4. 訂單編號詳細資料面板中 (在右側),按一下撤銷憑證連結。

    As an admin, you can revoke the certificate without admin approval. To do this, under Do you want to revoke without additional admin approval, select Revoke this certificate immediately.

  5. 要求撤銷訂單的憑證頁面的撤銷的原因方塊中,輸入您要撤銷憑證的原因 。例如,不再需要憑證

  6. 按一下要求撤銷

下一步是什麼

  • Once a CertCentral account administrator approves your revocation request DigiCert revokes the certificate.

  • Administrators only: If you selected Revoke this certificate immediately, DigiCert revokes the certificate now.

Subscription accounts

If revoking an individual certificate or the certificate order, your CertCentral subscription doesn’t automatically mark the consumed domain as available. To make the domain available again, open your subscription, find the domain, and remove the consumed domain from the subscription.