Enterprise Discovery Services®
Overview
The first step in managing encryption is to determine where keys and encryption certificates are deployed within the enterprise environment, and assess where imminent risks exist (such as which systems are using weak key strengths, which certificates and keys are about to expire, where rogue certificate authorities are in use, etc.).
To utilize the discovery services in Venafi Encryption Director, administrators simply enter an IP address or range of IP addresses and define the relevant ports to inspect. The discovery engine systematically and non-invasively queries each host for certificates (including SSL, SSL-EV, TLS, SMTP and self-signed) from any CA, collects information about the certificates, and presents a status report to the administrator.
Users can then easily identify systems that are at risk or require attention, and place those certificates under management. The discovery engine can be configured to regularly survey the infrastructure on a schedulable basis, and alert administrators whenever anything new is found.
The Discovery Services in Venafi Encryption Director are available in the Monitoring Edition, the Enrollment Edition and the Provisioning Edition.