The Venafi Secrets Engine for Vault implements a secrets engine for HashiCorp Vault. It enables developers to use native Vault commands for requesting both publicly-trusted and private CA certificates from Venafi Cloud, something not currently possible using HashiCorp Vault. This gives DevOps teams seamless access to certificates and ensures compliance with corporate security and audit policies.Learn more
The Venafi Monitor Engine for Vault allows security teams to set up a role within Vault that enforces certificate security policy (e.g. no wildcards, hash algorithm, key length, domain names) seamlessly. This enables developers to use native Vault commands for requesting certificates as they normally would within Vault while fully complying with corporate security and audit policies.Certificates issued by Vault are visible in the Venafi Cloud user interface to enable security teams to view issued certificates.Learn more
The Venafi Provider for Terraform makes it fast and easy to accelerate continuous delivery and scale applications using HTTPS with policy-compliant certificates from leading certificate authorities. Developers can now obtain policy compliant certificates by executing Terraform plans while providing security teams with visibility.Learn more
The Venafi Kubernetes integration works with the the popular cert-manager project from Jetstack. The cert-manager runs within its own container and automates the management of key and certificate life cycle for Kubernetes workloads and ingress controllers while Venafi Cloud provides a certificate authority (CA) independent interface, policy enforcement, and visibility.Learn more
Our integration implements an Ansible role that uses the Venafi VCert-Python library to simplify certificate enrollment and ensure compliance with enterprise security policies. This simplifies the procurement of certificates for Ansible administrators and developers by providing a certificate authority (CA) independent interface, enabling CA agility.
Our lightweight pre-built containerized version of the VCert utility that makes it easy for developers to request certificates for use within containers. The container can be pulled from Docker Hub. E.g. “docker pull venaficloud/venafi-docker-key-management” Certificates are exposed to other containers running on the same Docker host as the Venafi container.Learn more
GlobalSign solves the leading PKI challenges facing DevOps teams, allowing them to rely on proven, hosted PKI services instead of building CA infrastructure in-house, avoiding certificates all together, or using weak implementations that increase security risks. Our partnership enables you to request GlobalSign certificates using Venafi Cloud’s web interface, REST API, DevOps tools, and ACME server.
Venafi has a longstanding partnership with DigiCert, a premier high-assurance digital certificate provider. Our partnership enables you to request DigiCert certificates using Venafi Cloud’s web interface, REST API, DevOps tools, and ACME server.
If you’re familiar with Let’s Encrypt, then you know that ACME is a simple client/server protocol based on HTTP. Venafi Cloud for DevOps (Beta) includes an ACME service which can be used to automate certificate renewals using certificates from our integrated CAs, GlobalSign and DigiCert. Venafi Cloud for DevOps (Beta) represents the CA and ACME enables Venafi to verify that the applicant owns some number of domains, and then enables the applicant to request certificates for those domains.
Securing your infrastructure in Microsoft Azure just got easier. Available via our web interface and our REST API, our integration with Microsoft Azure:
Venafi VCert SDK native language bindings abstract and simplify the Venafi Cloud REST API for certificate enrollment using Go, Python and Java. This can be easily included within DevOps applications where certificate enrollment and will enforce security and audit policies.View in Github
Venafi VCert is a command line utility designed to generate keys and simplify certificate acquisition by eliminating the need to write code to interact with the Venafi REST API. VCert is available in 32 and 64 bit versions for Linux, Windows, and MacOS. This is offered as a single “golang” binary for Linux, Windows & OSX and can be easily included within DevOps tools or shell scripts, batch files, etc.
The Venafi Cloud for DevOps (Beta) REST API provides access to the functionality that is available via the web user interface (UI).
Common use cases for the Venafi Cloud API include: