Revoke

You can revoke a user's card if it is damaged, lost or compromised.

caution

If you enabled the Revoke certificate at card revoking/disabling option in the CA certificate template settings, all certificates stored on a card are removed.

To revoke a card:

1. Navigate to the user's profile.

2. Select the required card and then select Revoke in the card menu.

3. Define the revocation reason:

   • Card broken – the card is broken or destroyed
   • Card lost – the card is lost
   • Card update – you need to update the card
   • Card withdraw – the card is withdrawn from a deactivated user
   • Card compromise – the card key is compromised
   info

   If you select Card lost or Card compromise, Axidian CertiFlow revokes all certificates stored on the card.

4. Connect the card to the workstation and click Revoke. If you do not have access to the card, assign a task on the client agent: enable the Clean card on agent option.

The card revocation reason is displayed in the user's profile. If a user tries to authenticate with a revoked card, they receive a message stating that the certificates have been revoked.

Allow users revoke cards in the Self-Service

You can allow or prevent users from revoking the card in the Self-Service. To configure the permission:

1. Open the Configuration section, navigate to the policy settings and go to Workflow → User permissions → Issued card operations.
2. Enable the Revoke option.