Importing certificates into Trust Protection Foundation
Certificates can be imported from multiple sources to ensure full visibility and lifecycle management of machine identities within Trust Protection Foundation.
Importing certificates from CyberArk Certificate Manager - SaaS
Importing certificates from CyberArk Certificate Manager - SaaS lets you view and monitor all your certificates in CyberArk Certificate Manager - Self-Hosted in Trust Protection Foundation.
Importing certificates from certificate authorities (CAs)
You can import certificates based on the issuing certificate authority (CA). After the import is configured, all certificates issued by a specified CA are identified and then placed into the folders that you specify.
TIP Use a CA import to establish your initial inventory. Importing certificates can help you keep your inventory up-to-date because many of these certificates are enrolled outside of Trust Protection Foundation.
Importing certificates from CAs lets you
- Use Trust Protection Foundation to bring certificates issued by their CA under management, replacing processes that are currently manual and require multiple steps
-
Keep track of certificates that Trust Protection Foundation did not enroll
These often include mobile, user, and client device certificates. This gives you visibility over your entire certificate population, not just server certificates.
- Automatically reconcile imported certificates with existing certificates to ensure that Trust Protection Foundation is tracking current certificates
TIP To browse topics in this section, use the menu on the left side of this page.