With great power comes great responsibility. Customers love using Keyfactor Command to automate certificate management, saving them countless hours (and headaches) in the process. The feedback from our customers is loud and clear though – they love Keyfactor Command but want even more automation and flexibility that’s easy to use for novices and pros alike.
With Keyfactor Command 12, we’re raising the bar even higher, while making the entire platform easier to use, so you can get back to focusing on more important things (like your upcoming Caribbean getaway).
Keyfactor Command is packed full of 700+ improvements, here are some we think you’ll love the most. For the full details, you can always check out the release notes.
Here’s your TL;DR:
- A new CA Connector for the masses: We’ve made managing your CAs a breeze with our slick new web portal, for more efficient real-time discovery, inventory, and operations-related tasks.
- Multiple OAuth Identity Providers? No problem: You can now easily add multiple identity providers (IdPs) to Command.
- Supercharging workflows: Not only did we introduce new workflows to better track certificate lifecycle events, like expiration and changes in certificate stores, now you can also toggle workflows on/off, and even revert to previous workflows with just a few clicks.
- Across-the-board usability improvements: Powerful new search capabilities, granular private key retention settings, and improvements to documentation are all aimed at making the user experience even better.
There’s so much packed into Command 12 this TL;DR list is getting a little out of hand. Let’s get into the details so you don’t miss a thing.
A New CA Connector for the Masses
Keyfactor Command 12’s new lightweight CA Connector
The CA Connector is vital for Keyfactor Command to integrate with the various different sources you issue certificates from. It lets you connect and sync with certificate authorities (CAs) for true, unified management of all your certificates.
In Keyfactor Command 12, we introduced the new CA Connector management to the portal to make managing your CAs easier than ever, even for less technical users.
Multiple OAuth Identity Providers? No Problem
So, your organization might have gone through a merger or acquisition, or maybe you’ve got different business units all over the globe, each with its own identity provider setup. No worries! Now with Keyfactor Command 12, you can create multiple OAuth IdPs during configuration to make user management a breeze, especially in enterprises with thousands or tens of thousands of users.
And hey, we know more and more folks are moving away from Microsoft Active Directory (AD), so we’re continuing to expand support for different identity providers, including Okta, AuthO, OneLogin, and more.
Supercharging Workflows
Keyfactor Command 12’s workflow enhancements help organizations do more with less
Workflows are a powerful way for organizations to configure notifications, approvals, and automate processes. We’ve heard from our customers that work with multiple certificate stores and stakeholders that they want more flexibility and granular control.
With Keyfactor Command 12, we’ve delivered new workflow types – allowing administrators to fine-tune all the actions around them:
- Certificate Entered or Left Store Collection: Ensure stakeholders get notified when new certificates come or go from certificate stores in specific certificate store collections
- CRL Monitoring: Give owners and teams a heads up if their certificate is being revoked because it’s on a CRL list.
- Certificate Expiration: Notify owners or administrators about expiration events, even if they’re expected.
- SSH Key Rotation: Let users know when a key is reaching the end of its lifetime, and set up subsequent actions like communications or approvals
We didn’t just add workflows, though. Administrators can now toggle workflows on and off or revert to previous versions to ease things like updating certificate collections, doing maintenance, or making other infrastructure-related changes.
Across-the-Board Usability Enhancements
We have a lot to cover when it comes to usability. PKI and certificate management can be complex, and it’s our job to simplify it as much as possible for our customers. So, directly from our customers, we’ve made more than a few updates in Keyfactor Command 12 for less clicks, more customization, and significantly more beach enjoyment time.
Here’s the details:
- Get to collections faster with the ability to modify the order of collections that show up in the dashboard
- Need to see when data was last updated for a certificate? Collection and Collection Manager pages now include last processed date with the number of certificates
- For organizations with certificate stores managed outside of Command, users can search for certificate stores that have been discovered, but not approved
- A lot of customers need different key retention periods based on more specific parameters, so they can now be set at the template and CA level
- To ensure you get to the right documentation every time, a new setting specifies whether Command documentation links go to the hosted or on premise versions
- Get to your documentation faster with external documentation links that are now supported in the Help menu
Want to see Keyfactor Command in action? Get a customized demo or take a deeper dive into how you can orchestrate and automate PKI and machine identities at scale.
