Revoke all active ACME credentials
2 minute read
POST
https://www.digicert.com/partner-subscription/api/v1/acme/{{acme_contract_id}}/credentials/revoke
Use this endpoint to revoke all active ACME credentials for an ACME contract.
Revoking ACME credentials invalidates the existing External Account Binding (EAB) credentials used by ACME clients for certificate issuance. Use this endpoint when credentials are compromised or must be immediately invalidated.
This endpoint requires a subaccount Partner Subscriptions API key. Parent account API keys are not accepted for ACME contract operations.
Revokes all active ACME credentials for the specified ACME contract. Revoking ACME credentials does not cancel the ACME contract. The contract, SANs, product, and billing remain active. Existing EAB credentials no longer work for certificate issuance. To resume certificate issuance after revocation, use the Regenerate ACME credentials endpoint to create new EAB credentials. For more information, see Regenerate ACME credentials.
Example requests and responses
curl -X POST \
https://www.digicert.com/partner-subscription/api/v1/acme/12345/credentials/revoke \
-H 'X-PARTNER-APIKEY: {{subaccount_partner_api_key}}'import requests
url = "https://www.digicert.com/partner-subscription/api/v1/acme/12345/credentials/revoke"
headers = {
'X-PARTNER-APIKEY': "{{subaccount_partner_api_key}}"
}
response = requests.request("POST", url, headers=headers)
print(response.text)package main
import (
"fmt"
"net/http"
"io/ioutil"
)
func main() {
url := "https://www.digicert.com/partner-subscription/api/v1/acme/12345/credentials/revoke"
req, _ := http.NewRequest("POST", url, nil)
req.Header.Add("X-PARTNER-APIKEY", "{{subaccount_partner_api_key}}")
res, _ := http.DefaultClient.Do(req)
defer res.Body.Close()
body, _ := ioutil.ReadAll(res.Body)
fmt.Println(res)
fmt.Println(string(body))
}var request = require("request");
var options = {
method: 'POST',
url: 'https://www.digicert.com/partner-subscription/api/v1/acme/12345/credentials/revoke',
headers: {
'X-PARTNER-APIKEY': '{{subaccount_partner_api_key}}'
}
};
request(options, function (error, response, body) {
if (error) throw new Error(error);
console.log(body);
});204 No Content
All active ACME credentials were revoked successfully. The response does not include a body.
URL path and query parameters
| Name | Req/Opt | Type | Description |
|---|---|---|---|
| acme_contract_id | required | integer | Unique identifier of the ACME contract. |
Request parameters
This endpoint does not use request body parameters.
Response parameters
This endpoint does not return response parameters.
Was this page helpful?
Provide feedback