System information

Only CM agents can revoke certificates other than their own. A certificate must be revoked if

one of the following situations occurs:

• The owner of the certificate has changed status and no longer has the right to use the

certificate.

• The private key of a certificate owner has been compromised.

These two reasons are not the only ones why a certificate would need revoked; other reasons

are mentioned in Section 4.2, “Revoking One or More Certificates”.

To revoke one or more certificates, search for the certificates to revoke using the Revoke

Certificates button. While the search is similar to the one through the Search for Certificates

form, the Search Results form returned by this search offers the option of revoking one or all of

the returned certificates.

4.1. Searching for Certificates to Revoke

To search for one or more certificates to revoke, do the following:

1. Open the CM agent services page.

2. Click Revoke Certificates.

NOTE

The search form that appears has the same search criteria sections as the

Search for Certificates form.

3. Specify the search criteria by selecting the check boxes for the sections and filling in the

required information.

4. Scroll to the bottom of the form, and set the number of matching certificates to display.

5. Click Find.

6. The search returns a list of matching certificates. It is possible to revoke one or all certificates

in the list.

Chapter 5. CA: Finding and Revoking Certificates