Retiring a certificate

At the end of a certificate's lifecycle, you should retire it. If you don't retire certificates, you'll continue to receive notifications, warnings, and renewal notices.

The Retire action is available to a user under the following conditions:

• User must have View/Write permissions to the certificate.

• Certificate must meet all of the following states:

  • NOT already Retired/Disabled
  • NOT in error
  • NOT currently processing (for example: renewing, installing, or revoking)

To retire or disable a certificate

1. From the TLS Protect menu bar, click Inventory > Certificates.
2. Locate the certificate you want to retire.

3. Do one of the following:

   • From a row on the certificate inventory, click the action button, then click Retire.
   • From the certificate details page, click Actions > Retire.
4. Confirm that you want to retire the certificate by clicking Yes, Retire.

TLS Protect confirms that the certificate has been retired.

You can reactivate a retired certificate. To learn how, see Reactivating a retired certificate.