[Okta Webinar] Learn how to a build a cloud-first strategyRegister Now

  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 452
  • Last Modified:

Best Practices for certificate management

I was wondering if people could share how their companies manage their SSL certificates?

When companies  have a large number of certificates  what methods do they use to store the certificates and keys in a safe and secure manner? What policies do you put in place to protect the certificates?
I’ve seen a couple products on the market for this but the prices are expensive. Most cost more for the management than the actual certificate per year.

Just looking for some insight.
1 Solution
Garry GlendownConsulting and Network/Security SpecialistCommented:
We're using WebCert for creating and managing certificates ... might not be the most feature-rich tool, but covers our requirements ... very easy to use, too ...
As for safe/secure - if you want to make sure there's no abuse (do I need to mention "DigiNotar"?), install it on a machine that's not networked, and possibly keep all the data on a crypted partition that's only mounted when you actually need to do any signing ...
jbla9028Author Commented:
This seems like a good start. Thank you.

Featured Post

Independent Software Vendors: We Want Your Opinion

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Tackle projects and never again get stuck behind a technical roadblock.
Join Now