- In AWB, select the CA to be revoked by highlighting it.
- Select Tools > Revoke CA and select the revocation reason from the sub-menu.
- In the Signature dialog box, enter the PIN code. See Sign tasks for more information.
Revocation reasons
The available revocation reasons depends on the type of CA and the current state of the CA. The following table shows the available reasons and how a reason can be changed.
Current CA state and type | New state or reasons |
---|
Active CA | All reasons except On Hold |
Active CA with external key | All reasons including On Hold |
On Hold CA with external key | Reinstate or all reasons except On Hold |
Revoked CA, Affiliation Changed, Superseded or Cessation of Operation | Key-, CA- or AA Compromise |
Revoked CA, CA- or AA Compromise | Key Compromise |
Revoked CA, Key Compromise | None |
The On Hold reason can only be set on a CA with external key.