DevOps.com

  • Latest
    • Articles
    • Features
    • Most Read
    • News
    • News Releases
  • Topics
    • AI
    • Continuous Delivery
    • Continuous Testing
    • Cloud
    • Culture
    • DataOps
    • DevSecOps
    • Enterprise DevOps
    • Leadership Suite
    • DevOps Practice
    • ROELBOB
    • DevOps Toolbox
    • IT as Code
  • Videos/Podcasts
    • Techstrong.tv Podcast
    • Techstrong.tv - Twitch
    • DevOps Unbound
  • Webinars
    • Upcoming
    • On-Demand Webinars
  • Library
  • Events
    • Upcoming Events
    • On-Demand Events
  • Sponsored Content
  • Related Sites
    • Techstrong Group
    • Container Journal
    • Security Boulevard
    • Techstrong Research
    • DevOps Chat
    • DevOps Dozen
    • DevOps TV
    • Techstrong TV
    • Techstrong.tv Podcast
    • Techstrong.tv - Twitch
  • Media Kit
  • About
  • Sponsor
  • AI
  • Cloud
  • Continuous Delivery
  • Continuous Testing
  • DataOps
  • DevSecOps
  • DevOps Onramp
  • Platform Engineering
  • Low-Code/No-Code
  • IT as Code
  • More
    • Application Performance Management/Monitoring
    • Culture
    • Enterprise DevOps
    • ROELBOB
Hot Topics
  • 5 Unusual Ways to Improve Code Quality
  • Bug Bounty Vs. Crowdtesting Programs
  • Five Great DevOps Job Opportunities
  • Items of Value
  • Grafana Labs Acquires Pyroscope to Add Code Profiling Capability

Home » Latest News Releases » Sectigo Adds ACME Protocol Support in Certificate Manager Platform to Automate SSL Lifecycle Management

Sectigo Adds ACME Protocol Support in Certificate Manager Platform to Automate SSL Lifecycle Management

By: Deborah Schalm on April 4, 2019 Leave a Comment

Limits Human Error and Website Outages While Enabling Enterprises to Configure Automation Workflow

Recent Posts By Deborah Schalm
  • Exabeam Reinvents Security Analytics with Fusion XDR and Fusion SIEM Cloud Products to Address Security Needs at Scale
  • New Study Reveals Importance of Optimized Strategy for the Selection, Support, and Maintenance of Open Source Software
  • Applitools Integrates With Rally for Fast and Automated Bug Management
More from Deborah Schalm
Related Posts
  • Sectigo Adds ACME Protocol Support in Certificate Manager Platform to Automate SSL Lifecycle Management
  • Comodo CA Rebrands as Sectigo
  • StackPath Begins Providing Free Private SSL Certificates
    Related Categories
  • Latest News Releases
    Related Topics
  • Sectigo
Show more
Show less

ROSELAND, N.J – April 4, 2019 – Despite enterprises’ increasing use of modern, agile computing environments including virtualization, containerization, Internet of Things (IoT), and cloud, a vast number of IT administrators continue to deploy and manage certificates using old-fashioned techniques better suited to the infrastructure of the 90s than today’s DevOps environments. This “management by spreadsheet” introduces inefficiency and risk of outage or non-compliance due to human error.

To address the problem, Sectigo (formerly Comodo CA), the world’s largest commercial Certificate Authority and a leader in web security solutions, today announced support for the ACME protocol in its popular Sectigo Certificate Manager platform. By adding ACME support, Sectigo brings the reliability and efficiency of automation to enterprise certificate management.

“Any organization managing certificates manually across hundreds of web servers is at huge risk of unexpected certificate expiration and the resulting system failures that can cripple a business for a period of time,” said Lindsay Kent, VP of Product Management, Sectigo.

Lowering the TCO of Certificate Management

A single-server SSL Certificate installation requires up to nine time-intensive steps including login, download, renewal configuration, and testing, and costs an estimated $50 to $100 per web for each installation or renewal. Plus, complexity and cost only increase for web servers using multiple domains, wildcard certificates, reverse proxies, or load balancers.

Each step requires precise management by a web administrator or employee with technical skills to avoid the risk of human error and unexpected outages, which can be quite costly. For example, mobile operator O2 sought millions in damages from Ericsson following the loss of service for 32 million of its customers, along with those of other carriers around the globe. The day-long network data collapse in December 2018 owed itself to an expired certificate in the Ericsson technology stack servicing these carriers.

“Manually installing SSL certificates requires specialized skills, without which the enterprise risks misconfiguration, lack of visibility into installed certificates, and the inability to rapidly replace certificates due to unplanned events. A web administrator who is more skilled with HTML coding and web site building, and less experienced in Linux shell, may have significant difficulty performing the necessary steps, or may spend a great deal of time learning,” added Kent.

Four Ways to Automate While Maintaining Control

Advancements in the Sectigo Certificate Manager platform address these enterprise-scale challenges by providing mechanisms to automate installation and renewal of SSL certificates to servers within the traditional data center or in a DevOps environment — fully automating both deployment and ongoing management. This ACME support applies to Extended Validation (EV), Organization Validation (OV), and Domain Validation (DV) SSL certificates.

  • Industry-standard ACME protocol – Developed by the IETF, Automated Certificate Management Environment (ACME) defines an extensible framework for automating issuance and validation procedures for certificates, enabling servers to obtain DV, OV, and EV SSL certificates without manual user interaction. More than 100 open-source ACME clients are available to automate certificate issuance on Apache, IIS, NGINX, F5 BIG-IP, Citrix Netscaler, and other popular web servers and networking gear. The ACME tools fully automate key generation, domain control validation, certificate creation, and installation on the server. Where public certificates are needed, the client can request them directly from Sectigo.

 

  • Proprietary automated method – For Apache, IIS, Tomcat, and F5 BIG-IP environments, Sectigo provides a client for installation in one location at the customer premise that can then communicate with all the enterprise’s servers. Sectigo Certificate Manager embeds the web server administrator credentials into this agent for installation of certificates and private key propagation.

 

  • Custom workflows with REST API – Customers may use Sectigo’s RESTful (Representational State Transfer) API to install certificates, allowing for a customized workflow, including approvals and other steps. The administrator can require approval for certificate requests originating from the ACME client and can discover, track, run reports on, and make manual changes to certificates.

 

  • Tighter integration with third-party products – Sectigo has integrated with F5 BIG-IP and is working on additional third-party integrations to deliver full automation and workflow management.

To learn more, watch the Sectigo ACME Automation Video.

About Sectigo

Sectigo (formerly Comodo CA) provides web security products that help customers protect, monitor, recover, and manage their web presence and connected devices. As the largest commercial Certificate Authority trusted by enterprises globally for more than 20 years, and more than 100 million SSL certificates issued in over 200 countries, Sectigo has the proven performance and experience to meet the growing needs of securing today’s digital landscape. Follow Sectigo on LinkedIn or Twitter @SectigoHQ.

 

Filed Under: Latest News Releases Tagged With: Sectigo

« Using Jenkins Configuration as Code
ChartIQ’s Finsemble Adds Support for Electron, Bringing World-Renowned Technology to its Smart Desktop Platform »

Techstrong TV – Live

Click full-screen to enable volume control
Watch latest episodes and shows

Upcoming Webinars

How Atlassian Scaled a Developer Security Solution Across Thousands of Engineers
Tuesday, March 21, 2023 - 1:00 pm EDT
The Testing Diaries: Confessions of an Application Tester
Wednesday, March 22, 2023 - 11:00 am EDT
The Importance of Adopting Modern AppSec Practices
Wednesday, March 22, 2023 - 1:00 pm EDT

Sponsored Content

The Google Cloud DevOps Awards: Apply Now!

January 10, 2023 | Brenna Washington

Codenotary Extends Dynamic SBOM Reach to Serverless Computing Platforms

December 9, 2022 | Mike Vizard

Why a Low-Code Platform Should Have Pro-Code Capabilities

March 24, 2021 | Andrew Manby

AWS Well-Architected Framework Elevates Agility

December 17, 2020 | JT Giri

Practical Approaches to Long-Term Cloud-Native Security

December 5, 2019 | Chris Tozzi

Latest from DevOps.com

5 Unusual Ways to Improve Code Quality
March 20, 2023 | Gilad David Maayan
Bug Bounty Vs. Crowdtesting Programs
March 20, 2023 | Rob Mason
Five Great DevOps Job Opportunities
March 20, 2023 | Mike Vizard
Items of Value
March 20, 2023 | ROELBOB
Grafana Labs Acquires Pyroscope to Add Code Profiling Capability
March 17, 2023 | Mike Vizard

TSTV Podcast

On-Demand Webinars

DevOps.com Webinar ReplaysDevOps.com Webinar Replays

GET THE TOP STORIES OF THE WEEK

Most Read on DevOps.com

SVB: When Silly Valley Sneezes, DevOps Catches a Cold
March 14, 2023 | Richi Jennings
Low-Code Should be Worried About ChatGPT
March 14, 2023 | Romy Hughes
Large Organizations Are Embracing AIOps
March 16, 2023 | Mike Vizard
Addressing Software Supply Chain Security
March 15, 2023 | Tomislav Pericin
Understanding Cloud APIs
March 14, 2023 | Katrina Thompson
  • Home
  • About DevOps.com
  • Meet our Authors
  • Write for DevOps.com
  • Media Kit
  • Sponsor Info
  • Copyright
  • TOS
  • Privacy Policy

Powered by Techstrong Group, Inc.

© 2023 ·Techstrong Group, Inc.All rights reserved.