Start the certificate revocation process by selecting the certificate that you want to revoke. Provide the required configuration properties. Export this transaction as part of an update set, which is imported into the
protected instance for approval and execution.
Before you begin
Role required: sn_cse.codesigning_admin, sn_cse.quorum_requester, security_admin
Procedure
-
On your trusted instance, navigate to and open the Code Signing configuration page.
-
In the Instance type field, select trusted instance.
-
Select the Next button.
-
In the Action field under Select the action you’d like to accomplish, select Certificate Revocation.
The Certification Revocation Request page appears.
-
In the Select Certificate to Revoke page, select the certificate that you want to revoke and select Initiate Revocation.
-
Configure the approval requirements for certification revocation.
-
In the Quorum Requirements menu, enter the appropriate information in the text fields.
Table 1. Quorum Requirements Properties
| Property |
Description |
| Minimum approvals |
Minimum number of approvers required to approve the certificate revocation request.
|
| Time window |
Expiration time for the revocation request. |
| Approvers |
Email address of the users who are authorized to approve the revocation request.
|
-
In the Request description field, enter the reason for initiating the certificate revocation.
-
Select Save.
The Export configuration file menu appears.
-
On the Export Configuration file page, select Export to create and download a configuration file used to run certificate revocation workflow on your protected instance.