Quick Start Guide
The CERTInext Quick Start Guide helps you get up and running with certificate lifecycle management in minutes. It provides a guided flow to onboard your environment, discover certificates, automate issuance, and enable deployment - all from a centralized platform.
This guide follows the same structure as the CERTInext portal, allowing you to navigate seamlessly between documentation and the product UI.
Step 1: Access CERTInext
Navigation: Login → Dashboard
Log in to the CERTInext portal using your credentials
Ensure your organization and user roles are correctly configured
Verify access to required modules such as Certificates, Integrations, and Templates
Step 2: Configure Prerequisites
Navigation: Settings → Global Settings / Integrations
Before starting, ensure:
Network access (Port 443 outbound enabled)
Required credentials for endpoints (IIS, Tomcat, F5, etc.)
Administrative privileges for Bot installation
CA integration (Public CA or Private CA such as emCA)
These prerequisites ensure smooth discovery, issuance, and deployment workflows
Step 3: Install and Configure Bot
Navigation: Integrations → Tools → Bots
Download the CERTInext Bot
Install on a target system (Windows/Linux)
Launch with administrator privileges
Activate using Account ID and Bot Token
The Bot acts as the execution engine for discovery and deployment across your infrastructure
Step 4: Discover Certificates
Navigation: Certificates → Discovery / Bots
Create a new Bot configuration
Define scan targets:
IP ranges
Domains
Ports / Port ranges
Select sources:
SSL/TLS, LDAP, AWS, File System, HSM, F5
Run scan
All discovered certificates will be visible in the centralized inventory
Step 5: Create Templates (CSR & Provisioning)
Navigation: Certificates → Templates
Create CSR Template
Define key algorithm, size, subject details
Create Provisioning Template
Define deployment type (Tomcat, IIS, F5, etc.)
Configure automation settings
Templates standardize issuance and ensure policy-driven automation
Step 6: Issue & Rotate Certificates
Navigation: Certificates → Inventory
Select a discovered certificate
Apply CSR + Provisioning templates
Initiate Certificate Issuance / Rotation
CERTInext automates:
Key generation
CSR creation
Certificate issuance (Public/Private CA)
Renewal workflows
Step 7: Auto Deploy Certificates
Navigation: Certificates → Provisioning
Select deployment type:
Tomcat (server.xml update + restart)
IIS (Windows store + binding update)
F5 (SSL profile update via API)
Apply provisioning template
Certificates are automatically deployed to endpoints without manual intervention
Step 8: Monitor Dashboard & Alerts
Navigation: Dashboard
Track:
Expiring certificates
Weak keys / vulnerabilities
Discovery coverage
Automation health
Configure alerts:
Expiry notifications
Policy violations
Security risks
Step 9: Enable Notifications & Reporting
Navigation: Settings → Integrations (SMTP) / Reports
Configure SMTP for alerts
Enable expiry notifications
Generate reports for:
Inventory
Compliance
Risk posture
Quick Navigation Map (UI Alignment)
1
Login & Access
Dashboard
2
Prerequisites
Settings / Integrations
3
Bot Setup
Integrations → Tools
4
Discovery
Certificates → Bots / Discovery
5
Templates
Certificates → Templates
6
Issuance
Certificates → Inventory
7
Deployment
Certificates → Provisioning
8
Monitoring
Dashboard
9
Alerts & Reports
Settings / Reports
Outcome
By completing this Quick Start Guide, you will:
Discover all certificates across your environment
Centralize certificate inventory and visibility
Automate issuance, renewal, and deployment
Eliminate downtime caused by expired certificates
Strengthen security and compliance posture
Last updated