Certificate Store Types

Certificate store types allow you to define types of locations to contain certificates. These locations can be defined for operations such as inventory, management, discovery, and reenrollment.

Several built-in certificate store types are provided for use by the standard Keyfactor Command orchestrators. These include:

• Amazon Web Services
• F5 SSL TLS (Transport Layer Security) and its predecessor SSL (Secure Sockets Layer) are protocols for establishing authenticated and encrypted links between networked computers. Profiles
• F5 Web Services
• F5 CA A certificate authority (CA) is an entity that issues digital certificates. Within Keyfactor Command, a CA may be a Microsoft CA or a Keyfactor gateway to a cloud-based or remote CA. Bundles REST
• F5 SSL Profiles REST
• F5 Web Server REST
• File Transfer Protocol
• IIS Personal
• IIS Revoked
• IIS Roots
• Java Keystore A Java KeyStore (JKS) is a file containing security certificates with matching private keys. They are often used by Java-based applications for authentication and encryption.
• NetScaler
• PEM A PEM format certificate file is a base64-encoded certificate. Since it's presented in ASCII, you can open it in any text editor. PEM certificates always begin and end with entries like ---- BEGIN CERTIFICATE---- and ----END CERTIFICATE----. PEM certificates can contain a single certificate or a full certifiate chain and may contain a private key. Usually, extensions of .cer and .crt are certificate files with no private key, .key is a separate private key file, and .pem is both a certificate and private key. File

Custom certificate store types can be created for use with the AnyAgent The AnyAgent, one of Keyfactor's suite of orchestrators, is used to allow management of certificates regardless of source or location by allowing customers to implement custom agent functionality via an API. Framework (see Certificate Store Type Operations).