π Introduction
SecTrail CM offers two main integration categories to automate every phase of the certificate lifecycle: Certificate Authority (CA) integrations and System Integrations.
Integration Typesβ
Certificate Authority (CA) Integrationsβ
CA integrations automate certificate acquisition and renewal processes. SecTrail CM works seamlessly with both public and private certificate authorities, fully automating certificate requests, approval processes, and certificate acquisition.
Key Features:
- Automatic certificate request and approval process
- Automatic renewal
- Multi-CA support
- Template-based request management
- API-based secure communication
Supported CA Types:
| CA Type | Integrations |
|---|---|
| Public CA | DigiCert, GlobalSign |
| Private CA | Microsoft ADCS, HashiCorp Vault |
| ACME | Let's Encrypt, ZeroSSL |
System Integrationsβ
System integrations automate the deployment and management of certificates obtained from CAs to target systems. They establish secure connections to load balancers, firewalls, web servers, and application servers using an agent-less architecture to automatically perform certificate exchanges.
Key Features:
- Agent-less architecture
- Secure protocols (SSH, WinRM, HTTPS API)
- Automatic rollback support
- Post-deployment validation
- Detailed audit logs
Supported System Categories:
| Category | Integrations |
|---|---|
| Load Balancer | F5 BIG-IP, Citrix NetScaler |
| Firewall | Palo Alto, Fortinet FortiWeb |
| Web Server | NGINX, Apache, IIS |
| App Server | Tomcat, Java Keystore |
| Certificate Store | Windows Trust Store |