How can I manage my SSL certificates!? Look no further!
Summary
TLDRIn this video, Kendall introduces 'Key Manager Plus' by Managed Engine, a powerful yet affordable SSL certificate management tool designed for large organizations. The tool offers an intuitive dashboard to monitor expiring certificates, detailed certificate information, and the ability to export them directly. It also integrates with Active Directory, supports multiple domains, and can send email alerts for expiring certificates. Kendall emphasizes its cost-effectiveness and highlights features like CSR creation and password storage, making it an excellent solution for streamlined certificate management.
Takeaways
- π οΈ The video introduces 'Key Manager Plus', a tool for managing SSL/SSH certificates in large organizations.
- π Key Manager Plus offers a highly refined dashboard for SSL certificate management, which is considered one of the best by the speaker.
- π It provides an overview of certificates expiring within specific timeframes, such as 0-30 days, 30-60 days, and those already expired.
- π Users can drill down into certificate details, including expiration, issuer, and encryption algorithm.
- πΎ The tool allows for exporting and downloading certificates directly from the interface.
- π It includes a feature to view all keys and certificates within the organization, along with a graphical representation of the data.
- π Key Manager Plus integrates with Active Directory, supporting multiple domains and user authentication.
- π§ It has an automated email feature to notify users about expiring certificates, ensuring they stay on top of certificate management.
- π° The tool is described as being very affordable, especially for organizations needing to manage a large number of certificates.
- π It enables the creation and storage of CSRs (Certificate Signing Requests) and passwords in a centralized location.
- π The video mentions a streamlined process for certificate requests, from generation to signing, and the ability to attach and distribute certificates securely.
Q & A
What is the main purpose of Key Manager Plus?
-Key Manager Plus is a tool designed for managing SSL and SSH certificates, particularly useful for large organizations to streamline the process of certificate management.
Who is the speaker in the video and what is their focus?
-The speaker is Kendall, who focuses on discussing the features and benefits of Key Manager Plus, a certificate management tool.
What does Key Manager Plus offer in terms of a dashboard?
-Key Manager Plus provides an impressive dashboard that displays information about expiring certificates, including counts and details, which is considered one of the best in SSL certificate management tools.
How does Key Manager Plus help in identifying certificates that are about to expire?
-It categorizes certificates based on their expiration dates, showing counts for certificates expiring within 0 to 30 days, 30 to 60 days, and those that have already expired.
Can users drill down into the certificate details in Key Manager Plus?
-Yes, users can click on the certificate counts to view detailed information about each certificate, including its expiration status, issuer, and other relevant data.
What is the feature that allows users to export certificates from Key Manager Plus?
-Users can click on a specific certificate and use the export feature to download the certificate to their computer.
How does Key Manager Plus integrate with Active Directory?
-Key Manager Plus can be integrated with Active Directory, allowing users to log in with their AD credentials and manage permissions through groups, similar to other tools.
What is the cost of Key Manager Plus for managing a thousand SSL certificates?
-The annual contract for managing a thousand SSL certificates with Key Manager Plus is two thousand dollars, which is considered very affordable compared to other tools.
What additional features does Key Manager Plus offer for certificate management?
-Key Manager Plus also allows users to create CSRs (Certificate Signing Requests), store passwords centrally, and generate reports, among other features.
How does Key Manager Plus handle the process of certificate requests and management?
-It provides a centralized location for creating CSRs, managing signed certificates, and associating them with specific requests or tickets, which can then be closed and communicated internally.
What is the speaker's opinion on the value of Key Manager Plus compared to other tools?
-The speaker finds Key Manager Plus to be an extremely helpful and cost-effective tool, offering more features and better management capabilities than other tools they have used.
Outlines
π οΈ SSL Certificate Management with Key Manager Plus
The video introduces Key Manager Plus, a tool by Managed Engine, designed for SSL certificate management in large organizations. The tool offers an exceptional dashboard that provides insights into expiring certificates within various timeframes and allows users to drill down for detailed information on each certificate. It also enables the export of certificates directly to a user's computer. The speaker emphasizes the tool's ability to streamline certificate management, especially for organizations using global sign or other providers, and highlights its integration with Active Directory and its cost-effectiveness.
π° Affordable SSL Certificate Management and Automation
This paragraph delves into the cost-effectiveness and automation features of Key Manager Plus. The speaker discusses the affordability of the tool, mentioning its low annual contract cost for a thousand licenses. The tool's ability to automate tasks such as creating CSRs (Certificate Signing Requests) and storing passwords is highlighted. The video also covers the process of generating, signing, and managing CSRs centrally, which is particularly useful for organizations with internal certificate servers. The speaker shares a use case scenario involving the management of certificate requests and the secure distribution of certificates within an organization, emphasizing the tool's role in maintaining security and efficiency.
Mindmap
Keywords
π‘SSL Certificates
π‘Key Manager Plus
π‘Dashboard
π‘Certificate Expiration
π‘GlobalSign
π‘Drill Down
π‘Export Certificate
π‘Active Directory Integration
π‘CSRs (Certificate Signing Requests)
π‘Centralized Management
π‘Ticket Generation Process
Highlights
Introduction to Key Manager Plus, a tool for managing SSL and SSH certificates in large organizations.
Key Manager Plus offers an exceptional dashboard for SSL certificate management.
The tool provides an overview of certificate expiration dates, including counts for those expiring within 0-30, 30-60 days, and those already expired.
Users can drill down into specific certificate details, including expiration and issuance information.
Certificates can be exported and downloaded directly from the tool.
Key Manager Plus integrates with Active Directory and supports multiple domains.
The tool can automatically send email notifications for expiring certificates.
Affordable pricing for a thousand licenses, significantly cheaper than other tools with fewer features.
Key Manager Plus allows for the creation and storage of CSRs and passwords in a central location.
The tool streamlines the certificate management process, from request to signing and deployment.
Demonstration of how to attach a signed certificate to a ticket within the tool.
Key Manager Plus enhances security by centralizing certificate and passphrase management.
The tool supports the generation of various reports for certificate management.
Key Manager Plus is a new and valuable tool for organizations managing a large number of SSL certificates.
The presenter emphasizes the tool's cost-effectiveness and ease of use compared to other solutions.
A call to action for viewers to explore the tool further and potentially improve their certificate management processes.
Transcripts
[Music]
hey everyone Kendall here again so today
I wanted to do a short video on a tool
that if you're in a big organization
this should be very very helpful to you
guys talking to a bunch of my other IT
based friends they don't really know
about this tool a lot of people didn't
even know it existed a lot of people
know about this company though but they
just did not know that there was such a
tool for SSL based certificates this
tool does do SSH base certificates as
well but I'm just going to cover SSL
because it's just very very useful so as
you can tell here this is a demo and the
application is called key manager plus
it's made by managed engine which is up
here in the top left hand corner of the
screen this key manager plus gives you
just an awesome dashboard probably one
of the best dashboards I've ever come
across on any ssl certificate management
tool and a lot of you guys who are doing
this in a big organization you know that
hey if you're going through let's just
use global sign as an example you get a
tool that way or any big-name provider
that you have out there they give you
some type of tool of them but it's
nothing to this degree of I guess
refinement would be the best way I could
describe it so the nice thing is it
gives you how many certificates are
going to expire within you know then 0
to 30 days 30 to 60 days and then it can
give you obviously what's already
expired and it gives you the counts on
them well that's nice and enough self
but what it doesn't give you that you
would think is hey can I just click on
this and drill down on it well yes you
can you can click down on the 10 try and
which ones are expired and it'll
actually tell you all the information
about the certificate okay so that's
pretty sweet right now if that isn't
sweet enough you can drill down on cloud
front which was the first certificate
there as an example you can click on
this button you can actually export it
and download that certificate to your
computer so how sweet is that I mean
that's ridiculous right
alright you can go back to the homepage
and let's say next is 0 to 30 days what
certificates are expiring in my
organization Oh facebook as an example
you know these are all demo sites has
one day left all right it gives you all
the information about it like the key
size who issued it who you need to go
through to renew it right that type of
information and through this window of
course if you wanted no more about it
like hey I don't really know what this
ssl certificate here is for cloud let's
click on that huh okay here's all the
information about it gives me a founded
on port 443 it's valid from this date
and it goes to this date here's the
alternative names that also the
certificate uses right so there's a
couple other sites that the certificate
does and it's also a gosh I'm just going
to say asterix but it's basically a you
know it's for this whole HDFC Bank com
sorry I can't think of the stupid word
that you want to use there but anyways
um so you know that information it's a
sha-1 using RSA right for the encryption
for the key algorithm I mean there's
just so much and again you can export it
right out through this window come back
to home here same thing for 30 to 60
days okay the other cool thing is is
this gives you the how many certificates
it actually finds in your organization
so you can view your certificates it
tells you like an orange here this is
how many certificates i have in the key
store which is a function basically
where you can use the store keys within
the application and that does eat up
licenses and there is a way I guess I'm
not necessarily going to say around that
but there's a better use of the tool
that I found to use and if you guys want
more information about that I can go
into details on it and then tells you
obviously how much how many ssh-keys you
have and then here you can click view
all and it'll view all the keys the
licenses that you have in your
environment over here obviously it gives
you all the different certificates who
they're issued by right and a nice
graphical pie chart I mean this is great
for management
but also as like if you have a
monitoring team or a management team
that manages all these certificates and
they need to know when their upcoming me
this is just a great great tool it also
integrates with active directory let's
see if this is yeah so through their
demo on their site you can use your
active directory it works with multiple
domains i have tested this i know at
least six domains it works with and
users can log on with that's the most
amount of domains I've tested it with
you can assign groups just like you
would to any type of tool it works
really really well has a mail server
setting it can automatically mail let's
say 0 to 30 days you want to know when
that window of certificates are going to
expire it can email you a generated list
of all those certificates so every month
you're on top of your certificates this
may sound like I'm getting paid by them
I'm not getting paid by them I just find
this an extremely helpful tool and the
crazy thing about this is this tool is
dirt dirt dirt cheap okay I mean dirt
cheap for a thousand licenses on the
certificate you're going to pay two
thousand dollars as an annual contract
that is ridiculously cheap I'm not going
to tell you guys who I work for but we
spend a lot more on tools that do a lot
less let's just put it that way this
tool is amazing and especially for two
thousand dollars right if you have your
ssl certificates over here the other
cool thing about it is you can create
your CSRs and you can create your CSRs
and stores all your passwords here all
right so like this one's managed engine
they might all be that nope they're
different but it stores all your
passwords here so okay now you have your
private key inside a store that's
centrally managed right you can create
your csr and now you can send it off to
whoever needs to be signed by and after
you've gotten that signed right publicly
you basically can take that certificate
and use it wherever you want on your
devices which is super super slick but
the nice thing about this is it keeps
all this in one central location every
single time you create a csr
which is just amazing to me you know
unless your business is a hundred
percent through what's a global sign as
an example it's a nightmare if you have
internal certificate servers that you're
using to issue certificates and you're
creating CSR is that way you don't have
a management tool it's just a nightmare
and I know this firsthand so on this
tool is just well worth the money and a
lot of you people out there in
organization probably aren't going to
have a thousand certificates that you
need to manage if I'm gonna have
somewhere around 200 right and it's very
reasonable I think it starts off at like
a hundred dollars for this tool if you
have you know 100 or 200 certificates
and you can obviously get a quote up on
the top here you can call them you can
go to their site which is managed engine
com and they have tons and tons of
different tools there but I really
wanted to make people aware about this
tool because it is fairly new on the
market and it is a very good tool for
what it does you could streamline your
whole process if you wanted using a
certificate request basically let's say
this would be your ticket generation
process let's say you have a team that's
generating these requests you have
another team that's managing those
certificates that could then come to the
CSRs that create the CSRs once the CSRs
are created they then get them signed
either internally or externally and once
they're done they can come back to this
request let's say this is ticket right
for demo they're all closed so let's
just add one and we'll just call it a
testing testing testing com number of
days let's say watch 704 days and it's
for XYZ calm all right ok so it's
disabled for the demo but I know
firsthand because i have used this tool
you can after its that if you haven't
closed the ticket yet and it's open you
can click on the ticket and then when
you go to close the ticket you can
actually attach the certificate that you
got from global sign or your internal
certificate authority whoever you got
that
publicly signed by you can attach that
into this certificate request area which
basically closes changes the status the
closed and then it will email that
certificate internally without the
passwords right to whoever needs that
certificate and then the nice thing is
if they have active directory
credentials they can come here under
certificates or sorry under CSRs and
then they can view the passphrase
further certificate so then it's all
centering centrally managed it's not
emailed out anywhere and it's just kept
really really safe I'm sorry I'm not
trying to rank here but I just wanted to
touch all the topics on this just for
SSL and what it does because it is a
very very valid tool and you can
generate reports with it there's so much
more you can do with this tool and I'll
let you guys check it out I appreciate
you guys for watching and hopefully you
guys learned something
Browse More Related Video
5.0 / 5 (0 votes)