Device Trust Manager benefits

Flexible credential provisioning: Easily register devices with existing identities or let Device Trust Manager generate credentials for you. Supports both client-side and server-side generated keys and passcodes.

Secure registration: Register device credentials individually or in bulk, providing flexibility for various manufacturing workflows, including Just-In-Time (JIT) registration for cases where device customization during manufacturing isn't possible.

Manufacturing integration: Leverage multiple options to integrate Device Trust Manager with your existing manufacturing processes or third-party manufacturers, including an on-premise software gateway that forwards requests from the factory floor.

Certificate issuance at scale: Supports all certificate issuance protocols including EST, SCEP, ACME, CMPv2, REST API, web interface, plus bulk issuance. Device Trust Manager certificate issuance endpoints are built for scale, supporting hundreds of requests per second.

Over-the-air updates: Deploy features and security updates remotely to multiple devices with signed and scanned software, ensuring they run the latest approved versions.

TrustEdge agent for devices: Powered by the open-source TrustCore SDK, TrustEdge is a binary device agent that simplifies device management, handling tasks such as software updates and certificate renewal. It also includes an MQTT client for seamless integration with any MQTT-compliant broker.

Zero-touch provisioning: Automatically provision devices to cloud brokers, such as Azure Event Grid MQTT broker.

API integration: Integrate Device Trust Manager into your systems through comprehensive management REST APIs, offering full control over all web portal functions.

PQC-ready: Post-quantum ready with out-of-the-box support for ML-DSA, SLH-DSA, ML-KEM, and TLS 1.3.