Supported Devices and Platforms
PreviousUsing ACME Clients with eMudhra CERTInextNextCertificate Lifecycle and Key Management Platform (CERTInext)
Last updated
Was this helpful?
Last updated
Was this helpful?
Was this helpful?
eMudhra CLM supports a wide range of devices and platforms for automated certificate provisioning, ensuring compatibility with modern IT infrastructures. Below is a detailed list of supported categories, devices, and platforms, along with their use cases.
Web servers host websites and require TLS certificates to enable secure HTTPS connections, protecting data in transit.
Device/Platform
Supported
Version
Notes
Apache
Yes
2.2.X, 2.4.X
Supports automated deployment via ACME or custom scripts. Compatible with mod_ssl for TLS configuration.
Nginx
Yes
0.8.X - 1.26.X
Integrates with ACME for automated certificate issuance and renewal. Supports HTTP/2 and modern TLS protocols.
Microsoft IIS
Yes
5.0, 5.1, 6.0, 7.0, 8.0, 8.5, 10.0
Integrates with Windows Certificate Store for seamless certificate management. Supports SCEP and EST protocols.
Jetty
Yes
Java-based server with support for automated certificate deployment via Java KeyStore integration.
Use Case: Automating TLS certificate deployment on Apache or Nginx ensures websites maintain secure connections without manual intervention, ideal for high-traffic environments.
Application servers host business-critical applications, often requiring certificates for secure communication and authentication.
Device/Platform
Supported
Version
Notes
Tomcat
Yes
9.X, 10.X
Supports Java KeyStore for certificate storage and automated updates via eMudhra CLM.
JBoss
Yes
Compatible with automated provisioning using Java KeyStore or PKCS12 files.
WebSphere
Yes
12.2.1.X (12c), 14.1.1 (14c)
Integrates with IBM’s key management tools for certificate automation.
WebLogic
Yes
Supports Oracle’s key management and automated certificate lifecycle management.
Use Case: Application servers hosting internal APIs or customer-facing services benefit from automated certificate renewals to ensure uninterrupted secure communication.
Cloud platforms require certificates for secure access to resources, APIs, and services.
Device/Platform
Supported
Version
Notes
Azure Key Vault
Yes
Integrates with eMudhra CLM for automated certificate import and renewal in Azure environments.
AWS Key Manager
Yes
Supports automated certificate deployment to AWS resources via AWS SDK or CLI.
AWS Certificate Manager
Yes
Enables seamless integration for managing public and private certificates in AWS.
Imperva WAF (On – Prem)
Yes
X6530, X4530
Certificate deployment for Imperva Hardware-based Web Application Firewalls
Imperva (Cloud WAF)
Yes
Not Applicable
Supports automated certificate updates for Imperva’s cloud security solutions.
Use Case: Cloud services like AWS Certificate Manager automate certificate provisioning for load balancers and APIs, ensuring secure scalability in cloud-native environments.
Load balancers distribute traffic across servers and require TLS certificates for secure connections.
Device/Platform
Supported
Version
Notes
F5 BIG-IP
Yes
12.X-16.X
Supports automated certificate deployment via iControl REST API or ACME.
HAProxy
Yes
Integrates with ACME for automated certificate management in high-availability setups.
Use Case: Load balancers in enterprise networks use automated certificate provisioning to maintain secure traffic routing without manual updates.
CDNs deliver content globally and require certificates to ensure data integrity and performance.
Device/Platform
Supported
Version
Notes
Akamai
Yes
Not Applicable
Supports automated certificate deployment via Akamai’s EdgeGrid API or ACME.
Use Case: CDNs like Akamai use automated certificate provisioning to secure content delivery across global edge servers, ensuring low latency and high security.
HSMs securely manage and store cryptographic keys and certificates.
Device/Platform
Supported
Version
Notes
All HSMs
Yes
Compatible with major HSM vendors (e.g., Thales, Entrust, Utimaco) via PKCS11 or proprietary APIs.
Use Case: HSMs in financial or healthcare environments benefit from automated certificate provisioning to securely manage keys for compliance with regulations like PCI-DSS or HIPAA.
Repositories store and manage digital certificates and keys centrally.
Repository
Supported
Version
Notes
Active Directory
Yes
Windows Server 2012 R2
Windows Server 2016
Windows Server 2019
Windows Server 2022
Integrates with eMudhra CLM for automated certificate enrollment and management in Windows environments.
OpenLDAP
Yes
Supports automated certificate storage and retrieval in open-source LDAP deployments.
Use Case: Centralized repositories like Active Directory streamline certificate management for large-scale enterprise networks.
Certificate stores securely manage certificates within operating systems or applications.
Certificate Store
Supported
Version
Notes
Windows Certificate Store
Yes
Supports automated certificate import and renewal via SCEP, EST, or CMP protocols.
Use Case: Windows Certificate Store automation ensures seamless certificate updates for Windows-based applications and services.
eMudhra CLM leverages industry-standard protocols to automate certificate enrollment, issuance, and renewal. Each protocol is designed to address specific use cases and security requirements.
Protocol
Supported
Version
Description
SCEP (Simple Certificate Enrollment Protocol)
Yes
Simplifies certificate enrollment for devices and applications, ideal for mobile and IoT environments.
CMP (Certificate Management Protocol)
Yes
Provides a comprehensive framework for managing the entire certificate lifecycle, including issuance, renewal, and revocation.
EST (Enrollment over Secure Transport)
Yes
Enhances security for certificate enrollment using HTTPS, suitable for modern web-based environments.
ACME (Automatic Certificate Management Environment)
Yes
Automates issuance and renewal of SSL/TLS certificates, widely used for web servers and cloud services.
Use Case: ACME is commonly used with Let’s Encrypt or eMudhra’s CA to automate certificate renewals for public-facing websites, while CMP is ideal for complex enterprise PKI environments.