Viewing Certificate Inventory

Discovered Certificates Dashboard

The Discovered Certificates dashboard provides a centralized view of all certificates discovered automatically by Bots and certificates imported manually into CERTInext. This dashboard serves as the primary inventory for tracking, managing, and assessing certificate status across the environment.

Each row in the dashboard represents a single certificate and includes key metadata such as the Common Name (CN) or Subject Alternative Name (SAN), issuing CA, discovery source, validity period, current status and so on.

Filters

The Filter option allows users to narrow down the certificate inventory based on specific criteria.

Users can filter certificates by selecting:

• A Column (for example: CN/SAN, Status, Expires On, Issuer CA, Certificate Type) • An Operator (such as equals, contains, greater than, less than) • A Value corresponding to the selected column

Multiple filters can be applied simultaneously to refine the results. Filters are typically used to identify certificates nearing expiry, certificates issued by a specific CA, or certificates discovered from a particular source.

For Example:

To view certificates for a specific domain:

• Select CN / SAN in the Columns field • Select Equals as the Operator • Enter the domain name (for example: sharan.com) in the Value field • Click Filter

The dashboard will display only certificates that match the specified domain.

Customize Columns

The Customize Columns option allows users to control which certificate attributes are displayed in the dashboard. By default, the following columns are shown:

• CN / SAN • Bot Name • Status • Expires On • Certificate Type • Action - Select Action

Additional columns can be enabled, including:

• First Discovered On • Last Discovered On • Organization • Expires Within • Serial Number • Order ID • Certificate Location • Signature Algorithm • Scan IP Address • Scan Port • Issued On • Vulnerable • Tags

After selecting the required columns, click Apply to update the dashboard view.

This feature allows the dashboard to be customized for operational monitoring, compliance reporting, and audit use cases.

Select Action

The Select Action menu provides contextual operations for managing individual discovered certificates.

• Download Certificate → Downloads the certificate file in standard format for external use. • Certificate Details → Displays detailed certificate metadata including subject, issuer, validity period, serial number, key algorithm, and thumbprint. • View Certificate History → Shows the complete historical timeline of the certificate, including previous issuances, renewals, and status changes. • Scan Vulnerabilities → Performs a vulnerability assessment on the certificate and its configuration. • Ignore → Excludes the certificate from monitoring and operational workflows without deleting it. • Delete → Permanently removes the certificate record from CERTInext. • View Certificate → Opens the full certificate profile page with all technical and contextual information.

Action Details

This section explains what the user sees after selecting each action.

[1] Download Certificate

Downloads the certificate file to the local system. The file can be used for inspection, backup, or deployment in external systems.

[2] Certificate Details

Opens a modal window displaying core certificate attributes, including:

• Version • Serial Number • Signature Algorithm • Issuer • Valid From and Valid To • Subject • Public Key Algorithm • Thumbprint

This view is used for quick verification of certificate cryptographic properties.

[3] View Certificate History

Opens a timeline view showing all historical instances of the certificate.

Each entry includes:

• Issuer • Validity period • Status

This view provides traceability across renewals, reissues, and lifecycle events.

[4] Scan Vulnerabilities

Opens the vulnerability results window and displays:

• Overall certificate validity status • Hashing algorithm strength • Key size evaluation • Trust chain validation • Revocation status

The results indicate whether the certificate is secure, misconfigured, or vulnerable.

[5] Ignore

Marks the certificate as ignored. Ignored certificates remain in the inventory but are excluded from alerts, monitoring and lifecycle operations.

[6] Delete

Permanently deletes the certificate record from CERTInext. This action cannot be undone.

[7] View Certificate

Navigates to the full certificate profile page. This page includes:

• Certificate validity information • Issuer CA details • Authority Information Access (AIA) • Subject and key information • File path and location (if available) • Additional metadata and technical attributes

This is the most comprehensive view of the certificate within the platform.

All discovered certificates are consolidated into a central certificate inventory, which becomes the authoritative record for lifecycle management.