Revoke an ACME credential
2 minute read
POST
https://www.digicert.com/partner-subscription/api/v1/acme/{{acme_contract_id}}/credentials/revoke/{{credential_id}}
Use this endpoint to revoke a specific ACME credential for an ACME contract.
Use this endpoint for selective revocation when multiple ACME credentials exist for a contract and you need to invalidate only one credential, such as a credential used by a compromised ACME client.
- This endpoint requires a subaccount Partner Subscriptions API key. Parent account API keys are not accepted for ACME contract operations.
- Use the List ACME credentials endpoint to find the
credential_idfor the credential you want to revoke.
Revoking an ACME credential does not cancel the ACME contract. The contract, SANs, product, and billing remain active. The revoked credential can no longer be used for certificate issuance. If you need new credentials, use the Regenerate ACME credentials endpoint. For more information, see Regenerate ACME credentials
Example requests and responses
curl -X POST \
https://www.digicert.com/partner-subscription/api/v1/acme/12345/credentials/revoke/4821 \
-H 'X-PARTNER-APIKEY: {{subaccount_partner_api_key}}'import requests
url = "https://www.digicert.com/partner-subscription/api/v1/acme/12345/credentials/revoke/4821"
headers = {
'X-PARTNER-APIKEY': "{{subaccount_partner_api_key}}"
}
response = requests.request("POST", url, headers=headers)
print(response.text)package main
import (
"fmt"
"net/http"
"io/ioutil"
)
func main() {
url := "https://www.digicert.com/partner-subscription/api/v1/acme/12345/credentials/revoke/4821"
req, _ := http.NewRequest("POST", url, nil)
req.Header.Add("X-PARTNER-APIKEY", "{{subaccount_partner_api_key}}")
res, _ := http.DefaultClient.Do(req)
defer res.Body.Close()
body, _ := ioutil.ReadAll(res.Body)
fmt.Println(res)
fmt.Println(string(body))
}var request = require("request");
var options = {
method: 'POST',
url: 'https://www.digicert.com/partner-subscription/api/v1/acme/12345/credentials/revoke/4821',
headers: {
'X-PARTNER-APIKEY': '{{subaccount_partner_api_key}}'
}
};
request(options, function (error, response, body) {
if (error) throw new Error(error);
console.log(body);
});204 No Content
The ACME credential was revoked successfully. The response does not include a body.
URL path and query parameters
| Name | Req/Opt | Type | Description |
|---|---|---|---|
| acme_contract_id | required | integer | Unique identifier of the ACME contract. |
| credential_id | required | integer | Unique identifier of the ACME credential to revoke. This value is returned by contract creation, credential regeneration, or the List ACME credentials endpoint. |
This endpoint does not use URL query parameters.
Request parameters
This endpoint does not use request body parameters.
Response parameters
This endpoint does not return response parameters.
Was this page helpful?
Provide feedback