What’s In It for you?

Overview

A single pane management interface for end-to-end Certificate and Key management, automation, and Orchestration:

Discovery and Visibility

  • Discover unknown certificates and keys across heterogeneous environments.
  • Group certificates and keys, apply access restrictions and assign governance policies.
  • Monitor expired certificates, notify, and renew certificates on time.
  • Get a holistic view of certificates, keys, and respective device associations.

CLM Automation

  • Access to a catalog of advanced automation workflows for certificate management.
  • Build custom, event-driven automation using pre-built workflow tasks.
  • Self-service automation workflows for easier policy-based certificate enrollment.
  • Integrate with ITSM, ChatOps tools for holistic Incident and Change management, and notifications.
  • Enforce custom expiration dates or enable auto-rotation of keys.

Cloud and DevOps

  • Discover, manage and automate certificates across multi-cloud and container environments.
  • Generate internal certificates for test applications before migrating to external certificates.
  • Request any certificate and provision it to cloud key stores using a single interface.
  • Manage certificate enrollment and availability on Vault Keystores for containerized environments.
  • ACME for easier certificate enrollment.

Secure Key Management

  • Encrypt and secure private keys in a FIPS-compliant database and secure encryption keys on a vault or a FIPS 140-2 certified HSM.
  • Use a built-in or third-party password vault to store critical passwords.
  • Avoid Private Keys on wire by generating them directly on the device.

Certificate and Key Compliance

  • Standardize certificate provisioning using self-service.
  • Enforce organization standards through policies for complaince.
  • Define granular role-based access control and enforce business-specific policies.
  • Create audit trails for each user and certificate or key-related activity.
  • Get the certificate and key logs on SIEM dashboards.

IoT and Enterprise Mobility Certificate Management

  • Get a single SCEP and EST for enrollment requests from IoT and network end-points.
  • Integrate with EMM/MDM systems and self-service certificate issuance using SCEP.
  • Intune SCEP for systems managed through Azure Intune.
  • Standardize certificate management across multivendor platforms.
  • Use out-of-box integration with vendors to handle certificate provisioning.

SSH Key Lifecycle Automation

  • Discover SSH keys from Linux and Windows machines
  • Enforce timebound access to servers by managing keys on both client and server machines.
  • Discover non complaint keys or hosts not following organization standards.
  • Report long existing accesses to be revoked.