Certificate Lifecycle Management (CLM) in Certificate View
Limited Customer Release
March 20, 2025
Introducing Certificate Lifecycle Management (CLM)
Certificate Lifecycle Management (CLM) ensures the proper handling of digital certificates throughout their lifecycle, from issuance to renewal. Certificate View simplifies by using advanced automation, central control, and integration. It is designed to handle the needs of businesses.
This feature is currently in Beta. To activate it for your subscription, contact your Technical Account Manager (TAM).
Prerequisites
To access this feature, you need:
- Super User role
- Certificate View full subscription
Benefits
- Enhanced Security
CLM protects sensitive data by managing digital certificates, thereby preventing unauthorized access and reducing the risk of security breaches and data leaks.
- Compliance with Regulations
By following policies and procedures for certificate management, CLM helps organizations comply with industry requirements and standards.
- Automation and Efficiency
CLM automates certificate renewal and provisioning processes, leading to increased efficiency.
- Visibility and Control
CLM provides an overview of all digital certificates across the organization, empowering administrators to proactively identify potential challenges and enhance certificate management efficiency.
- Reduced Downtime
CLM helps prevent service disruptions caused by expired certificates by proactively managing certificate expiration dates.
CLM Workflow in Certificate View
With Certificate View, You can issue, provision, renew, and enroll certificates for your websites and servers.
Certificate View supports both public and private CAs. For public CAs, you can follow the procedure outlined by DigiCert. For private CAs, refer to the EJBCA guidelines.
Get Started with CLM in Certificate View
- Create Certificate Authority
- Create Issuing Template.
- Create Jobs to issue, deploy, and schedule renewal of certificates.
Tokens for Searching Assets and Certificates
When you are on the Jobs tab, you can refer to the token available on the Search Tokens for the Jobs Tab.
To view certificate details of individual requests.
To use these tokens navigate to Jobs > Certificate Requests > Schedule > select the individual request and click View details from Quick Action.
Here is the list of tokens with their description and example.
| Tokens | Description | Example |
|---|---|---|
| certhash | Use a text value ##### to specify the certificate fingerprint of the certificates. | certhash: 20e1541486f2cd405559d8483a3663f2a |
| issuer.name | Use a text value ##### to specify name of the issuing certificate authority. | issuer.name: Symantec Class 3 EV SSL CA - G3 |
| issuer.organization | Use a text value ##### to specify the organization mentioned in the issuer distinguished name. | issuer.organization: Symantec Corporation |
| keySize | Use a text value ##### to specify the key length of a certificate. | keySize: 2048 |
| serialNumber | Use the values ##### to find a certificate having a specific serial number. | serialNumber: "01ab8a210a7cf9955665c47fca758459ca78" |
| subject.name | Use a text value ##### to define the certificate name. | subject.name: www.qualys.com |
| subject.organization | Use a text value ##### to specify the organization mentioned in the subject distinguished name. | subject.organization: Qualys, Inc. |
| validTo | Use a date range or specific date to specify expiration date of the certificates. | validTo < "2022-01-20" |
You can view asset details of individual requests.
To use these tokens navigate to Jobs > Certificate Requests > Jobs > select the individual request and click View details from Quick Action.
Here is the list of tokens with their description and example.
| Tokens | Description | Example |
|---|---|---|
| assetName | Use a text value ##### to search assets by name for the deployed job. | assetName: server1 |
| status | Use the token values to search deployed jobs based on status. Choose the status values from Pending, Finished, In Progress, CSR Generated, or Failed. | status: Finished |