Certificate revocation is a process in which a certificate's usage is terminated before the validity period expires.


This section lists all the certificate revocation requests. 


To revoke a certificate from the web portal:


  1. Expand SigningHub > Issued Certificates. 
  2. Click the button against the certificate that you want to revoke and click on More Actions.



  1. Certificate action screen will be displayed. Select "Revoke Certificate" from the drop down, select a reason for revocation, tick the confirmation checkbox and then click Revoke. 


ADSS Web RA supports the following types of TLS certificates:

  • EVS TLS Server authentication
  • TLS Client authentication
  • TLS Server authentication


When an EV TLS Server authentication certificate is revoked, ADSS Web RA will support only the following six revocation reasons:


  1. Unspecified 
  2. Key Compromise
  3. Affiliation Change 
  4. Superseded
  5. Cease of Operation 
  6. Privilege Withdrawn



  1. The certificate will be revoked and it will appear in the Revocation Requests listing. 


Second Factor Authentication 


If second factor authentication is enabled on certificate requests, the configured authentication mechanism will function accordingly. When a user clicks on the Generate button, the authentication window will appear, and once it accepts the selected method, it will generate a certificate. 


The authentication mechanism can be one of the following:


  • SMS OTP Authentication 
  • Email OTP Authentication 
  • Email & SMS Authentication
  • SAML Authentication 
  • Active Directory Authentication 
  • Azure Active Directory Authentication
  • OIDC Authentication