Entrust Discovery now offers Microsoft CAPI query capabilities
Entrust expands its certificate discovery solution, Entrust Discovery, by broadening search capabilities for digital certificates residing within Microsoft’s Cryptographic APIs (CAPI). And now with more than 25 basic or custom policy alert fields, Entrust Discovery offers stronger compliance tools.
“Understanding that today’s organization often manages complex certificate environments, we provide more methods of discovering certificates and enhance the policy options once under management,” said Entrust President and CEO Bill Conner. “Entrust Discovery builds on the core platform to make it easier to manage a full certificate environment — regardless of certificate type or location.”
Entrust Discovery assists organizations in gaining a complete perspective of deployed certificates. The solution finds, inventories and manages digital certificates across diverse systems to help prevent outages, data breach and non-compliance.
The solution now offers more policy alert fields, including issuer DN, expiry status, subject DN, key (e.g., RSA 2048), time valid, subject alt names (SAN) and certificate signature method.
Taking advantage of the new Entrust Discovery options, organizations may choose to run monthly, weekly, daily or even hourly scans that compare against established — and even customized — policies.
Organizations can tailor policy alert fields to provide notifications for any detail, which could include something as simple as the certificate owner’s name or email address, to more advanced traits such as location or upgrade date.
Within an organization’s environment, Entrust Discovery quickly finds and inventories certificates. Three separate components — Entrust Discovery Agent, Entrust Discovery CAPI Scanner and Entrust Discovery Manager — collaborate to help organizations discover the risks caused by rogue or expiring certificates, and then subsequently assists in resolving these issues.