Help
FortiAuthenticator
FortiAuthenticator provides centralized authentication services for the Fortinet Security Fabric including multi-factor authentication, single sign-on services, certificate management, and guest management.
jstan
Staff
Staff

Created on ‎09-17-2020 02:12 AM Edited on ‎05-08-2025 07:22 AM By Moderator

Article Id 192202

Technical Tip: Unable to remove revoked certificate: delete button is greyed out

Description

 

This article describes the reason why revoked certificates cannot be removed from FortiAuthenticator.

 

Scope

 

FortiAuthenticator.

 

Solution


Explanation:

 

Sometimes, the delete button is greyed out even when the certificate has been revoked.
This behavior is intentional. A certificate can only be removed when the certificate is revoked and expired (for CRL and OCSP purposes).
The only way to remove the revoked certificates prior to expiry is to remove the corresponding issuing CA certificate.

 

FAC-delete.png

 

Note: In some versions, for both Users and Local Services Certificates, it is necessary to select the (Filter) icon and choose the status (All) in order to see the Revoked certificates.


FAC-filter.png

8392
0 Kudos
Suggest New Article
Article Feedback
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.