A PKI certificate is the central authority used to generate, create, update, revoke and perform other types of certificate management. This system will involve using a certificate authority, or CA, which is the core of the actual system. The CA is responsible for the creation of both private and public keys contained in digital certificates. This system can also be used to add another component to digital certificates, which enables them to be used as digital signatures.
Use the Revoke Feature in a PKI Certificate System When Employees Leave Your Organization
One unique feature of a PKI certificate system is the ability to revoke digital certificates. Once a certificate has been created and distributed, it still can be managed and controlled. Often, organizations will include a certificate expiration date, which will require users to request a new certificate at regular intervals. However, when employees are terminated or leave your organization, it is wise to use the revoke feature. This feature will remove all certificates held by this user and prevents others from gaining access to resources, either through the former employee’s computer, or even by the former employee, when they worked from a home office.