How-To: Restore Access to an Orphaned Domain

If a domain owner leaves your organization without transferring domain ownership, the domain becomes orphaned. This guide provides steps to restore access to an orphaned domain in EZCA.

If a domain owner leaves your organization without transferring domain ownership, the domain becomes orphaned. An orphaned domain means that no current user or group has ownership rights to manage the domain in EZCA, which can prevent certificate requests and management for that domain.

How to Restore Access to an Orphaned Domain in EZCA

To restore access to an orphaned domain, you will need to have a PKI administrator for the Certificate Authority (CA) associated with the orphaned domain delete and re-register the domain with new owners. Follow these steps:

Have a PKI admin for your CA navigate to the EZCA portal at https://portal.ezca.io.
Navigate to the Certificate Authorities section.
Identify the Certificate Authority (CA) associated with the orphaned domain and click View Requirements.
Scroll down and click View Registered Domains.
Locate the orphaned domain in the list and click View Details.
You will see the list of current Domain Owners. If there are any users, groups, or applications that still have access, you will see them here.
To re-assign access, you will need to delete and re-create the domain with new owners. Click the Delete button to remove the orphaned domain.

Note

Deleting the domain will not delete or impact any issued certificates, it will remove the ability to request new certificates for that domain until it is re-registered. You can safely delete and re-register the domain without impacting existing certificates.
Confirm the deletion when prompted.
You can now re-register the domain with new owners by following the steps in the guide: How-To: Assign Domain Ownership for Certificate Management.