Certificate Revocation - dogtagpki/pki GitHub Wiki

Overview

This page describes the process to revoke a certificate. The operation must be done by a CA agent.

Revoking a Certificate

To revoke a certificate permanently, execute the following command:

$ pki <agent authentication> ca-cert-revoke <certificate ID>

Holding a Certificate

To revoke a certificate temporarily (i.e. hold), execute the following command:

$ pki <agent authentication> ca-cert-hold <certificate ID>

Releasing a Certificate

To release a certificate that has been held:

$ pki <agent authentication> ca-cert-release-hold <certificate ID>

See Also

Tip
 To find a page in the Wiki, enter the keywords in search field, press Enter, then click Wikis.
⚠️ **GitHub.com Fallback** ⚠️