PKI SSL Management Feature Explanation
Enterprise Managed PKI (Public Key Infrastructure) is a service that allows organizations to take control of SSL Certificate management —including issuing new certificates and reissuing, replacing, and revoking existing certificates on demand. The ability to manage your PKI needs directly and immediately gives your account administrator more control and eliminates the waiting period associated with retail requests.
DigiCert’s MPKI account features are straightforward and easy to use and our development team is willing to work with any of our MPKI customers to update or personalize account functionality.
Streamlined Certificate Management
The primary goal of our enterprise Managed PKI accounts is to streamline the management process. Because all of your domains are pre-approved, certificate issuance and renewal can be done in 60 seconds or less. No validation, no paperwork, just a click of a button. And your admin no longer has to worry about managing CSRs and installation for all your employees. Because admins can create limited users, your employees can submit their own CSRs and complete their installations themselves. All your admin has to do is approve their requests.
Easy-to-Manage PKI Account Auditing
Admins are given easy-to-use functions to help them with account auditing. These functions include an account audit log that tracks and records every action from every user inside your account, a purchase order manager for tracking account deposits and expenditures, and customizable email reminders to help keep track of important account maintenance functions.
Domain Pre-Approval
In a standard account, domains and companies are approved or reapproved every time an order is placed. Even if you request multiple certificates for the same domain, your domain will be revalidated by our support staff with every order. While we do our best to keep issuance time to a minimum, there is always some delay. In a Managed PKI system, domains only need to be submitted to DigiCert for approval one time, after which all approvals are taken care of by your chosen account administrator.
Greater Administrative Control
Another goal of enterprise accounts is to centralize PKI management and grant your administrator the control required to oversee the issuance and management of SSL Certificates within your organization. In a standard SSL management account, requests for new certificates, reissues, etc. are sent directly to our validation department for approval. However, for Managed PKI accounts, all of these requests are routed instead through your account administrator. Only in situations where a new domain is involved (a domain that has never been used inside your account before) will the request be routed to our validation department for approval.
Unit and Subunit Management
With an MPKI account your administrator can create multiple units inside your account to match your account structure and to simplify internal auditing, account management, or billing procedures.