Certificate replacement allows you to replace your third-party certificate automatically or manually with a DigiCert certificate.
You can also replace your certificate when:
You can either replace a certificate manual or setup automation for it to be configured automatically.
To see available certificate actions, go to Discovery > View Results page.
The auto-replace feature has been integrated with automation service, which in turn checks whether there are any automation setups available for matching IP/Port or certificate and automatically replaces them.
To submit an auto-replace request:
For more information on setting up automation, see Set up ACME automation for an endpoint device.
The certificate installation starts immediately. In case, an automation setup is already configured, it will take you to the Manage automation page.
You can manually replace your certificate if your certificate host is not configured for automation.
Replace your certificate if it is revoked or missing.
On Automation > Manage profiles page,
Discovery service monitors certificates by doing daily revocation checks. If a revoked certificate is found, this configuration ensures that the revoked is automatically replaced by a new certificate.
Use the Discovery service to Set up and run a scan. This will discover the revoked or missing certificate on the host.