Skip to main content

Entrust discovery

Link to your Entrust account to import existing Entrust certificates into DigiCert​​®​​ Trust Lifecycle Manager to be monitored and managed there.

Once imported, you can use Trust Lifecycle Manager's automation tools to replace the Entrust certificates with new certificates from DigiCert or other connected CAs.

Important

Entrust connectors can only be used to import certificates, they do not support issuance of new certificates from the Entrust CA.

You must add a separate Entrust discovery connector in Trust Lifecycle Manager for each Entrust account you want to import certificates from.

Before you begin

You need API user credentials (user name and key) for the Entrust account.

To create an API user in the Entrust Enterprise UI:

  1. Log in as a Certificate Services Enterprise Super Admin.

  2. Select Administration > Advanced Settings > API.

  3. Select Generate Credentials.

  4. Select Generate.

  5. Copy and save the new API user name and API key. The API key cannot be displayed again.

Add Entrust discovery connector

  1. From the Trust Lifecycle Manager main menu, select Integrations > Connectors.

  2. Select the Add connector button.

  3. In the Certificate authorities section, select the tile for Entrust discovery.

    Complete the form as described in the following steps.

  4. Configure the general connector properties in the top section of the form:

    • Name: Assign a friendly name to this connector.

    • Business unit: Select a business unit for this connector. Only users assigned to this business unit can manage the connector.

  5. In the Link account section, enter API access details for the Entrust account:

    • Base URL: The base URL path for accessing the Entrust API. Leave this set to the default value.

    • API user name: The user name for a valid Entrust API user. The API user name is a numeric ID value.

    • API key: The API key for the above Entrust API user.

  6. Configure the Import attributes for how to import certificates from the Entrust account:

    • All valid certificates get imported by default. Select whether to import expired or revoked certificates.

    • Business unit (optional): Assign a business unit to imported certificates. Only users assigned to this business unit can manage the imported certificates.

    • Tags (optional): Assign tags to imported certificates to help categorize and manage them in Trust Lifecycle Manager.

    • Schedule import frequency: Select scheduling options for ongoing import operations. Trust Lifecycle Manager runs an initial import operation and then checks for new certificates to import from the Entrust account at the frequency you configure here (every 24 hours by default).

  7. Select Add to create the Entrust discovery connector with the configured settings.

What's next

  • Monitor and manage the imported Entrust certificates from your Inventory page in Trust Lifecycle Manager.

  • Use Trust Lifecycle Manager's automation tools to replace the Entrust certificates with new certificates from DigiCert or other connected CAs.

: