User Tools

Site Tools


pki:certificate_revocation_list

Creating a Certificate Revocation List

You can download a pem coded certificate revocation list signed by the newest ca from

https://pki.<hostname>/IoT_pki/export_crl/

Revoking a certificate

To revoke a certificate, you must log in to the administrators panel, and tick the revoked box. This will have two effects: Any attempts to renew a revoked certificate will fail The certificate will be included the next time a Certificate Revocation List is downloaded.

This means that revoking a certificate using the pki does not have immediate effects. To do so, you must re-issue a certificate revocation list to all of your applications.

pki/certificate_revocation_list.txt · Last modified: 2017/07/20 13:30 by matt