Architecture
Certificate lifecycle automation in DigiCert ONE involves the following components:
DigiCert® Trust Lifecycle Manager
The central command area that interconnects the other automation components and supplies the user interface for you to manage all your certificates. You make selections from graphical menus and let the automation service do the work of requesting, downloading, and installing the certificates.
Issuing certificate authorities
The root systems that issue the certificates under management. DigiCert® Trust Lifecycle Manager can automate lifecycle management of both private and public trust certificates issued from a variety of sources.
DigiCert® software used to automate management of certificates on standard hosts such as web servers. The agent software is based on the industry standard ACME protocol and is installed locally on each server system you need to manage.
DigiCert® software used to discover and automate management of certificates on network appliances/services such as load balancers. The sensor software is installed on a dedicated host on your network with visibility to all the appliances and cloud services you need to manage.
DigiCert® Trust Lifecycle Manager feature used to connect your sensors to external network appliances and cloud services to manage the certificate deployments on them.
A special type of connector used to automate domain control validation processes. During a certificate lifecycle automation event, the DNS integration service places challenge tokens on your DNS servers to prove ownership of your domains.