Encryption Consulting Unveils CertSecure Manager v3.3 with Zero‑Touch Certificate Renewals
What Happened – Encryption Consulting released CertSecure Manager v3.3, adding fully automated (“zero‑touch”) certificate renewal for all major web, load‑balancer and database platforms and expanding support to 11 Certificate Authorities, including Google Public CA and AWS. The update also introduces a risk‑profile engine, ServiceNow store app, chain visualization, and broader discovery across cloud and on‑prem environments.
Why It Matters for TPRM –
- Un‑automated certificate renewal is a leading cause of unplanned downtime and security incidents; automation reduces that exposure across the supply chain.
- Centralized, risk‑based visibility into third‑party certificates helps assess the security posture of vendors that manage or host TLS assets on your behalf.
- Integration with ServiceNow and Splunk enables continuous monitoring and rapid response, aligning with third‑party risk governance frameworks.
Who Is Affected – Enterprises that rely on TLS certificates across web servers, load balancers, databases, and cloud services; SaaS providers, MSPs, and any organization that outsources infrastructure or uses third‑party CAs.
Recommended Actions –
- Review your current certificate lifecycle processes and compare them against CertSecure Manager v3.3 capabilities.
- Validate that any third‑party vendors handling TLS assets can support zero‑touch renewal or adopt a comparable solution.
- Incorporate the new risk‑profile engine outputs into your vendor risk dashboards and incident‑response playbooks.
Technical Notes – The release adds automated renewal agents for Apache, Nginx, IIS, F5, Citrix NetScaler, JBoss EAP, Wildfly, MongoDB, Oracle DB, and MSSQL Server. It now natively integrates with Google Public CA, Microsoft AD CS, DigiCert, Entrust, EJBCA, HashiCorp Vault, and AWS Public/Private CAs. A ServiceNow Store app and Splunk SIEM connector embed lifecycle data into ITSM and security workflows. No new CVEs or vulnerabilities are disclosed. Source: Help Net Security