Deleting a client device certificate

You can delete a client device certificate from the IBM Security Guardium Key Lifecycle Manager server that is no longer required.

About this task

You cannot delete a certificate that is in the following states:
  • Marked as default or partner
  • Scheduled for a future rollover
  • Active SSLSERVER certificate

Procedure

  • Using the graphical interface
    1. Log in to the graphical user interface.
    2. Go to Advanced Configuration > Client Device Certificates.
      The Client Device Certificates page is displayed.
    3. In the Client Device Certificates table, select the certificate that you want to delete.
    4. Click Delete.
    5. Review the text in the Confirm dialog and click OK.
  • Using the REST interface
    1. Open the Swagger UI. For more information, see Using Swagger UI.
    2. Authenticate and authorize to access IBM Security Guardium Key Lifecycle Manager REST services. For more information, see Authentication process for REST services.
    3. Go to the System communication certificates management section.
    4. Run the Delete Certificate REST Service.
      For example, to delete a client device certificate, you can send the following HTTP request:
      DELETE https://localhost:port/SKLM/rest/v1/certificates/sklmCertificate
      Content-Type: application/json
      Accept : application/json
      Authorization: SKLMAuth userAuthId=139aeh34567m
      Accept-Language : en
      Response:
      Status Code : 200 OK
      Content-Language: en
      {"code":"0","status":"Succeeded"}

Results

The client certificate is deleted.