ONTAP 9.14.1 commands

security certificate ca-issued revoke

Revoke a Digital Certificate

Availability: This command is available to cluster and Vserver administrators at the admin privilege level.


This command revokes a digital certificate signed by a Self-Signed Root CA.


-vserver <Vserver Name> - Name of Vserver

This specifies the name of the Vserver on which the certificate is stored.

-serial <text> - Serial Number of Certificate

This specifies the serial number of the certificate.

-ca <text> - Certificate Authority

This specifies the name of the Certificate Authority whose certificate will be revoked.

-ca-serial <text> - Serial Number of CA Certificate

This specifies the serial number of Certificate Authority.

[-common-name <FQDN or Custom Common Name>] - FQDN or Custom Common Name

This specifies a fully qualified domain name (FQDN) or custom common name or the name of a person. This field is optional if ca-serial is specified.


This example revokes a signed digital certificate for a Vserver named vs0 with serial as 4F5A2DF2 for a Certificate Authority certificate that has a ca of www.ca.com and a ca-serial of 4F4EB629.

cluster1::> security certificate ca-issued revoke -vserver vs0 -serial 4F5A2DF2 -ca  www.ca.com  -ca-serial 4F4EB629
Top of Page