SecTrail Certificate Manager offers a comprehensive CA infrastructure that enables your organization to operate as its own certificate authority. With this feature, you can create a new CA authority, perform signing by integrating with corporate local authorities (Microsoft ADCS etc.)  or integrate with external global CA (GlobalSign, DigiCert, Let's Encrypt etc.) services. Thus, you can manage both your internal and global certificates from a single center, and achieve full security control and cost effectiveness while meeting your certificate needs.

The corporate certificate authority infrastructure runs on a PKI (Public Key Infrastructure) foundation designed in accordance with industry standards. By creating a Root CA and Intermediate CA hierarchy, you can perform certificate management at different security levels. This structure provides flexible deployment between high-security certificates for critical systems and standard certificates for general-purpose applications.

Certificate lifecycle management is fully automated. Certificate requests are received via GUI, API channels based on templates or in CSR (Certificate Signing Request) format, passed through automatic verification processes, and certificates are instantly generated for approved requests. 

You can create pre-defined configurations for different usage scenarios with template-based certificate policies. Optimized certificate profiles are prepared for specific purposes such as web servers, email systems, code signing, and user authentication. Each template includes technical specifications such as encryption algorithm, key length, validity period, and certificate usage parameters.

In terms of security and compliance, CA operations are supported by HSM (Hardware Security Module) integration. Root CA private keys are protected within hardware security modules and critical operations are performed with hardware-based signing. This approach ensures compliance with FIPS 140-2 Level 3 and Common Criteria standards.

It records all transactions with a detailed audit logging system for CA operations. Certificate generation, revocation operations, policy changes, and management actions are all stored as logs. These records create a critical data source for compliance audits and analyses.