Revoke certificate in Certificate Manager
This article describes how to revoke a certificate that is produced by Smart ID Certificate Manager (CM). The certificate can be a public key certificate (PKC) or an attribute certificate (AC). This task is done in the Certificate Controller (CC) in Certificate Manager (CC).
The article explains the handling of PKCs but it applies to ACs as well, with the only difference that the role 'Revoke attribute certificate' corresponds to the role 'Revoke certificate' and the role 'Revoke attribute certificate with password' corresponds to the role 'Revoke certificate with password'.
Use revocation roles to obtain different levels of security when performing revocation tasks. This table shows the security levels:
Security level | Roles | Type of revocation |
---|---|---|
High | Revoke certificate with password | Password required |
Medium | Revoke certificate with password and Revoke certificate | Manual verification or password required |
Low | Revoke certificate | Unconditional |
Although putting a certificate on hold is similar to a revocation it is described separately in Put certificate on hold in Certificate Manager.