emSign Knowledge Base
  • emSign
  • Getting Started
    • About emSign
    • Why emSign?
    • Key Highlights
      • Root Store Listings
      • Trust
      • Security
    • Certificate Lifecycle and Key Management Platform (CERTInext)
  • emSign CERTInext
    • Overview
    • Getting Started
      • Enterprise Sign up
      • Partner Sign up
      • Retail Customers
      • Multi-factor & Trusted login
        • Multifactor Authentication and Single Sign On
        • Enforce 2FA
        • IP Restrictions
        • Digital Certificate based login
      • Alerts and Notifications
    • User and Group Management
    • Ordering a Certificate
      • As a Customer
        • DV certificates
        • OV Certificates
        • EV Certificates
        • SMIME Certificates
        • Intranet SSL Certificate
        • IGTF Certificates
        • Subscription Plan Coverage for SSL Products
        • Group-based Certificates Ordering
        • Ordering using Custom Fields
      • As a Partner
        • Order for Customers
        • Order for Sub-accounts
      • Requester Approval Workflows
        • EV requests by Authorized Signatory
        • Certificate requests by Administrator
      • Submitting a Certificate Signing Request (CSR)
        • Submit CSR for Pending Orders
        • Replace CSR for Pending Orders
      • Downloading Certificates
        • Download Interim DV
        • Download Certificate
      • Post Order Actions
        • Renew Certificate
        • Revoke an issued Certificate
        • Reissue Certificate
        • Add / Remove SANs for Multi-Domain SSL
    • Management
      • Domains
      • Organizations
      • Orders
      • Products
      • Templates
        • CSR Templates
        • Provisioning Templates
    • Integrations
      • Using APIs to Order
        • REST APIs
        • ACME APIs
      • Tools
        • eMudhra Certificate Utility Tool
        • eMudhra emSign Click Tool
          • Procedure for installing Certificate in HSM
          • Procedure for Attested CSR Generation
      • CA Connectors
    • Billing & Payments
      • Add Credits
      • Invoices
      • Statement (Ledger Statement)
      • Product Price List
    • Reports
      • Orders Report
      • Overall Statistics
      • Certificates Report
      • Key Store Report
      • Key Report
      • Sales Summary
      • Audit Logs
    • Settings
      • Reporting Tags
      • Manage Schedules
      • Custom Fields
    • Certificate Lifecycle Management
      • Discover Certificates
      • emSign CERTInext Bot
    • Key Lifecycle Management
      • Manage Keys
      • Key Profiles
      • Key Store
  • Consent Management
  • Certificate Approval Process
    • Domain Validation (DV) Process
    • Organization Validation (OV) Process
    • Extended Validation (EV) Process
    • User Certificates Process
    • SMIME Certificate Process
    • Qualified Sources
  • Certificate Installation
    • Before you install
    • Browser Compatibility
    • emSign's Security Seal
    • Installing SSL Certificate on IIS
    • Installing SSL Certificate on cPanel
    • Installing SSL Certificate on Amazon Web Services (AWS)
    • Installing SSL Certificate on Apache
    • Installing SSL Certificate on Plesk 12
    • Installing SSL Certificate on NGINX
    • Installing SSL Certificate on Google App Engine
    • Installing SSL Certificate on WHM
    • Installing SSL Certificate on Ubuntu
    • Installing SSL Certificate on Tomcat
    • Installing SSL Certificate on Heroku
    • Installing SSL Certificate on Bigcommerce
    • Installing Root & Intermediate Certificates for Intranet SSL
    • Supported Devices for auto-provisioning of certificates
    • SSL/TLS Server Rating Guide
  • Release Notes
    • Introduction
    • R1619 (07-Apr-2025)
    • R1591 (10-Mar-2025)
    • R1581 (28-Feb-2025)
    • R1553 (31-Jan-2025)
    • R1522 (31-Dec-2024)
    • R1490 (29-Nov-2024)
    • R1460 (30-Oct-2024)
    • R1427 (27-Sep-2024)
    • R1371 (02-Aug-2024)
    • R1354 (16-Jul-2024)
    • R1300 (23-May-2024)
    • R1251 (04-Apr-2024)
    • R1230 (14-Mar-2024)
    • R1196 (09-Feb-2024)
    • R1167 (11-Jan-2024)
    • R1152 (27-Dec-2023)
    • R1139 (14-Dec-2023)
    • R1124 (29-Nov-2023)
    • R1115 (20-Nov-2023)
    • R1101 (06-Nov-2023)
    • R1075 (11-Oct-2023)
    • R1062 (28-Sep-2023)
    • R1046 (12-Sep-2023)
    • R1039 (05-Sep-2023)
    • R1031 (28-Aug-2023)
    • R1024 (21-Aug-2023)
    • R1001 (29-Jul-2023)
Powered by GitBook

© eMudhra. All Rights Reserved.

On this page

Was this helpful?

Export as PDF
  1. Release Notes

R1553 (31-Jan-2025)

This release introduces new features as below:

What's New

  • Consent Management System: Consent Management System (CMS) will be implemented to manage user consent and compliance requirements. The system will collect, store, and track user consent for certificate issuance, data processing, and certificate renewals. To meet regulatory requirements and other privacy laws. Provides users with the ability to review, modify, or withdraw consent, ensuring transparent management of personal data.

  • Akamai Discovery and Deployment (CPS + Origin Server): Discovery and Deployment for Akamai will include the setup for the Certificate Provisioning System (CPS) and Origin Servers across different environments.

    • CPS Discovery: The system will automatically discover Akamai's CPS for seamless integration with CERTInext.

    • Akamai Origin Server Discovery: Identify and track origin servers that handle content delivery in Akamai's CDN, ensuring proper certificate application.

  • AWS ECM (Enterprise Certificate Management) will be integrated into CERTInext, enabling discovery and deployment of certificates within Amazon Web Services (AWS). Identify and track certificates issued and used within the AWS environment.

  • Discovery and Deployment via Connector Bot: Connector Bot will automate the discovery and deployment of certificates and keys across different environments and pushes it to the Requestor.

    • Discovery: Automatically scans the network and identifies all certificate stores, keystores, and other endpoints that require certificates.

    • Deployment: Automatically deploy certificates to target systems, ensuring consistent and up-to-date certificate management.

  • CA Discovery: CA (Certificate Authority) Discovery will allow CERTInext to automatically discover all active certificate authorities (CAs) within the organization. This ensures all issued certificates, whether internal or from third-party providers, are tracked and managed within CERTInext.

  • JKS (Java KeyStore) Discovery: Identify and manage certificates stored in JKS. JKS Management facilitates discovery of keystore files for certificate renewal, replacement, and revocation.

  • Protocol Support (SCEP / EST / CMP): Protocol Support will include SCEP (Simple Certificate Enrollment Protocol), EST (Enrollment over Secure Transport), and CMP (Certificate Management Protocol) to manage certificate issuance and lifecycle across various endpoints:

    • SCEP: Commonly used in environments like mobile devices and network devices for automated certificate enrollment.

    • EST: A more secure version of SCEP, used to ensure encrypted communication between devices and CAs.

    • CMP: Used in highly secure environments for complex certificate management workflows.

  • File System Discovery – Key Store File (Certificates & Keys): File System Discovery will help CERTInext scan the file system for keystore files, which may contain private keys and certificates. Files such as PKCS12 (.pkcs12) or Java KeyStores (.jks) will be identified, enabling the import, management, and tracking of certificates stored outside centralized systems. This is critical for environments where certificates and keys are stored locally or in custom key storage solutions.

  • CERTInext – New Partner & Sub-Partner Flow and Commission Model

    • Partner Onboarding: A simplified and structured process for adding new partners and sub-partners to the CERTInext platform.

    • Roles & Permissions: Partners and sub-partners will have distinct roles and permissions to manage certificates and associated processes.

    • Commission Model:

      • Tiered Commission Structure: Partners can earn commissions based on the discount percentage given to the Sub-partners.

      • Automation: The commission process is automated to avoid manual calculations, providing a transparent and real-time overview of earnings.

  • Vulnerability Ratings in Discovered Certificates Excel: When exporting certificate discovery data (e.g., to Excel), CERTInext will include vulnerability ratings for each discovered certificate. This feature will help identify certificates with known vulnerabilities or security risks.

  • Monthly Invoicing: CERTInext will support monthly generation of invoices for certificate services, tracking usage, and subscription charges over the course of the month. This will make the invoicing process more efficient and aligned with monthly billing cycles. This feature is based on permission provided in emSign backoffice.

PreviousR1581 (28-Feb-2025)NextR1522 (31-Dec-2024)

Last updated 1 month ago

Was this helpful?