Scan using Bots

CERTInext uses Bots to discover SSL/TLS certificates deployed across servers, applications, load balancers, and other supported endpoints. Bots run locally within the environment and communicate securely with the CERTInext platform using outbound connections only. This approach enables certificate discovery in environments with restricted access, including systems without inbound internet connectivity. Bots support both discovery and provisioning workflows and are managed centrally from the CERTInext portal.

This section explains how to create, configure, install and operate CERTInext Bots for certificate discovery and provisioning. Bots act as secure local agents that connect CERTInext with your internal infrastructure without requiring inbound access.

About the CERTInext Bot

The CERTInext Bot is a lightweight agent installed within the customer environment. It securely communicates with the CERTInext platform to perform certificate discovery and provisioning operations based on the configuration defined in the portal.

The CERTInext Bot runs as a user-level application on the host system.

It is not installed as a system-wide service or daemon.

This means:

• The bot runs under the logged-in user account

• The bot inherits the permissions of that user

• Access to target systems depends on the credentials and privileges of the user running the bot

Bot Installation Scope

The CERTInext Bot operates with the following scope and limitations:

• Only one CERTInext Bot can be installed on a single system at any time

• The bot runs at the user level and is not installed as a system-wide service

• Each bot installation is associated with a single bot configuration created in the CERTInext portal

These constraints ensure predictable behavior, clear ownership and secure operation across environments.