eIn some situations, you may want to explicitly clear and revoke a client certificate without deleting the client from FileWave, for instance if you are wiping a macOS client or reinstalling an IVS client.
The following command, run from the client itself, will make the server revoke the client certificate (replace <fwserver_address> with the address of your FileWave server):
The client will then be unable to communicate with the server (until a new CSR is created). This command can be used in the activation script of a macOS reinstall fileset to make the server properly clear the old client certificate.
Note that the command above uses the client certificate itself to identify the client. Alternatively, you can also clear certificates en masse using the inventory superadmin token. In this case, you are allowed to clear the certificate of any client (obviously use with caution):
- <fwserver_address>: The FileWave server address
- <serial_1>, ... : serial numbers or mac addresses of the clients to revoke (should match the serial or mac from inventory)
- <application_token>: base64-encoded value of the superadmin application token (can be found in the Application Tokens tab of the Manage Administrators dialog)
A Dict of list of serials for: SUCCESS, NOT_FOUND and ERROR is returned.