Agent Client Collector certificate revocation reasons

  • リリースバージョン: Australia
  • 更新日 2026年03月12日
  • 所要時間:4分

    • The following table lists and describes the possible reasons for revoking an Agent Client Collector certificate to stop communication between the agent and ITOM cloud services.

    表 : 1. Certificate revocation reasons
    Reason Description
    Unspecified Revoke a certificate without providing a specific revocation code.
    注:
    This reason code doesn’t provide an audit trail identifying why a certificate was revoked.
    Key Compromise You suspect that the private key associated with a certificate is compromised.

    For example, if a laptop belonging to a user in your organization is stolen, any private keys stored on the laptop may be compromised.
    CA Compromise You suspect that a Certificate Authority's (CA) private key has been compromised and is in the hands of an unauthorized individual. If a CA’s private key is revoked, the CA hierarchy considers all certificates below that CA revoked as well.
    Affiliation Changed An individual is no longer working in the organization, or the computer account to which the certificate was issued is no longer in use. Can also be used if a person changes roles within an organization and no longer requires using the certificate associated with their previous role.

    For example, an employee could move from the purchasing department and no longer require a certificate to authorize purchase requests.
    Superseded Indicates that a new certificate must be issued in place of a previously issued certificate. For example, if you update a certificate template and reissue certificates, you could revoke the previous certificate with this reason code.
    Cessation of Operation A server or workstation is decommissioned, and all certificates issued to the server are no longer required. You can use this revocation reason when decommissioning a CA.
    Certificate Hold A temporary revocation indicating that a CA won’t validate a certificate at that specific time.
    注:
    Using this reason code makes it difficult to determine whether a certificate was valid at a specific time.
    Remove from CRL Enables future unrevoking of the certificate, removing the certificate from the certificate revocation list (CRL).
    Privilege Withdrawn The certificate holder no longer has the privileges required to continue using the certificate.
    AA Compromise Indicates suspected or actual compromise of the authentication authority (AA) validated in the certificate.