Revoke a private certificate before it expires when you no longer need it.
Revoking or deleting a private certificate removes trust in your enterprise's internal environments. Revoked certificates cannot be restored or re-enabled. Proceed with caution.
Prerequisites
Before you begin, ensure that you have:
Access to the Certificate Management Service console
A private intermediate certificate authority (CA) under Private Certificate Management that has issued the certificate
Revoke a certificate
Log in to the Certificate Management Service console.
In the left navigation pane, choose Certificate Management > Private Certificate Management. On the Private Certificate Management page, select the region where the Private Certificate Authority (PCA) service is located.
On the Private CAs tab, find the intermediate CA that issued the certificate, then click Certificates in the Actions column.
On the Certificates page, find the certificate to revoke, then click Revoke in the Actions column.
In the Confirmation message, click Revoke.
The certificate status changes to Revoke immediately. Once revoked, the certificate is no longer trusted in your enterprise's internal environments, and you can delete it from the certificate list.