Certificate Collection Manager

The Certificate CollectionClosed The certificate search function allows you to query the Keyfactor Command database for certificates from any available source based on any criteria of the certificates and save the results as a collection that will be availble in other places in the Management Portal (e.g. expiration alerts and certain reports). Manager is used to:

  • View a list of certificate collections.
  • Change whether or not the collections show in Navigator (the top menu, where they appear under Certificates).
  • View whether or not the collections show in the dashboard widget (see Dashboard: Collections).
  • Delete a certificate collection.
  • Search for specific certificate collections from the list (see Using the Collection Manager Search Feature).

  • View all the certificates in a collection.

    Highlight the collection from the Certificate Collection Manager grid and click the View action button. This will open a new window with the name of the collection in a certificate search grid (see Viewing an Existing Certificate Collection).

Tip:   An automated timer service runs against these collections (except My Certificates) to monitor certificates entering and leaving the collections so they can be used to trigger a custom workflowClosed A workflow is a series of steps necessary to complete a process. In the context of Keyfactor Command, it refers to the workflow builder, which allows you automate event-driven tasks when a certificate is requested or revoked. to manage your PKIClosed A public key infrastructure (PKI) is a set of roles, policies, and procedures needed to create, manage, distribute, use, store and revoke digital certificates and manage public-key encryption. health (see Workflow Definitions).

To open the Certificate Collection Management grid, browse to Certificates > Collection Manager in the Management Portal. The Certificate Collection Management page includes the following collection action buttons from the grid header:

  • Set Show in Navigator on the collection to determine whether or not the collection appears in Navigator (the top menu under Certificates). To change this setting, highlight the row in the collection management grid and click Show in Navigator at the top of the grid, or right-click the collection in the grid and choose Show in Navigator from the right-click menu. This will toggle the Yes/No in the Show in Navigator grid column.
  • To delete a collection, highlight the row (or rows) in the collection management grid and click Delete at the top of the grid or right-click the collection in the grid and choose Delete from the right-click menu.
  • Highlight a row in the collection management grid and click View at the top of the grid, or right-click the collection in the grid and choose View from the right-click menu to be taken to the list of certificates in that collection. Choosing this option will open the certificate search page in a new window filtered with the specific collection.

Figure 62: Certificate Collection Manager

Several collections are created automatically when Keyfactor Command is installed.

Important:  The special query options of %TODAY%, %ME%, and %ME-AN% are only supported in uppercase. Lowercase equivalents (e.g. %me%) cannot be substituted.
Important:  All automatically created collections are included on the menu by default, and all are included in the Certificate Collections Management grid by default. They are created for fresh installations of Keyfactor Command only, not upgrades, so as not to overwrite any user-defined collection for existing installations.
Tip:  Click the help icon () next to the Certificate Collection Manager page title to open the Keyfactor Command Documentation Suite to this section. You can also find the help icon at the top of the page next to the Log Out button. From here you can choose to open either the Keyfactor Command Documentation Suite at the home page or the Keyfactor API Endpoint Utility.