# Scan using Bots CERTInext uses Bots to discover SSL/TLS certificates deployed across servers, applications, load balancers, and other supported endpoints. Bots run locally within the environment and communicate securely with the CERTInext platform using outbound connections only. This approach enables certificate discovery in environments with restricted access, including systems without inbound internet connectivity. Bots support both discovery and provisioning workflows and are managed centrally from the CERTInext portal. This section explains how to create, configure, install and operate CERTInext Bots for certificate discovery and provisioning. Bots act as secure local agents that connect CERTInext with your internal infrastructure without requiring inbound access. **About the CERTInext Bot** The CERTInext Bot is a lightweight agent installed within the customer environment. It securely communicates with the CERTInext platform to perform certificate discovery and provisioning operations based on the configuration defined in the portal. The CERTInext Bot runs as a user-level application on the host system. It is not installed as a system-wide service or daemon. This means: * The bot runs under the logged-in user account * The bot inherits the permissions of that user * Access to target systems depends on the credentials and privileges of the user running the bot **Bot Installation Scope** The CERTInext Bot operates with the following scope and limitations: * Only one CERTInext Bot can be installed on a single system at any time * The bot runs at the user level and is not installed as a system-wide service * Each bot installation is associated with a single bot configuration created in the CERTInext portal These constraints ensure predictable behavior, clear ownership and secure operation across environments. --- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://docs.certinext.io/documentation/certificate-lifecycle-management/discovering-certificates/scan-using-bots.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.