Welcome to integrations
Table of Contents
Expand all | Collapse all
-
- Activate Next-Generation Trust Security
-
-
- Configure AWS connection
- Configure Azure Key Vault connection
-
- Workload Identity Federation authentication
- Workload Identity Federation - Azure Identity Provider authentication
- Next-Gen Trust Security Generated Key authentication
- User permissions
- Workload Identity Federation authentication
- Next-Gen Trust Security Generated Key authentication
- User permissions
- Supported OIDC claims
-
-
-
-
- Create an F5 BIG-IP LTM machine
- Create a Microsoft Azure Private Key Vault machine
- Create a Microsoft IIS machine
- Create a Microsoft Windows (PowerShell) machine
- Create a Microsoft SQL Server machine
- Create a Common KeyStore machine
- Create a Citrix ADC machine
- Create an Imperva WAF machine
- Create a VMware NSX Advanced Load Balancer (AVI) machine
- Create an A10 Thunder ADC machine
- Create a Cloudflare machine
- Create Kemp Virtual LoadMaster machine
- Create a Palo Alto Panorama machine
-
- Provision to an F5 BIG-IP LTM
- Provision to a Microsoft Azure Private Key Vault
- Provision to Microsoft IIS
- Provision to Microsoft Windows (PowerShell)
- Provision to Microsoft SQL Server
- Provision to a Common KeyStore
- Provision to a Citrix ADC
- Provision to an Imperva WAF
- Provision to VMware NSX Advanced Load Balancer (AVI)
- Provision to an A10 Thunder ADC
- Provision to Cloudflare
- Provision to a Kemp Virtual LoadMaster
- Provision to Palo Alto Panorama
-
-
- 47-Day Validity Readiness TLS Certificates dashboard
- About the Certificate Inventory
- Managing certificate lifecycle settings
- Reissuing certificates in Next-Gen Trust Security
- Downloading certificates, certificate chains, and keystores
- Retiring, recovering, and deleting certificates
- Finding certificates in the certificate inventory
- Importing certificates from a CA using EJBCA
- Notification Center overview
- Domain-based validation for external emails
- Managing user accounts
- Troubleshooting
Welcome to integrations
As organizations adopt multi-cloud and hybrid environments, managing digital identities, securing keys, and automating certificate lifecycles is critical. Venafi is at the forefront, enabling secure-by-design architectures through deep integrations with leading identity providers, cloud platforms, and certificate authorities.
With Next-Gen Trust Security, you can integrate seamlessly across key categories:
- Authentication and identity providers: Centralize access and user identity management.
- Certificate authorities: Automate certificate issuance and lifecycle management from both public and private CAs.
- Cloud providers: Provision and manage certificates in your cloud environments.
- Machines: Connect to and manage certificate lifecycles on application endpoints like load balancers, databases, and web servers.
- Notifications: Receive real-time alerts and updates through collaboration tools or webhook-enabled systems.
Authentication and identity provider integrations
Integrate with your enterprise identity providers or credential managers to enable secure, automated authentication and access control within your Venafi workflows.
Certificate authority integrations
Venafi supports a broad range of public, private, and custom certificate authorities. These integrations simplify certificate issuance and help enforce policy across all your workloads.
Public CAs
Integrate with trusted third-party certificate authorities for public TLS/SSL and code signing certificates.
Private CAs
Use private CAs to issue certificates for internal systems and services, ensuring security and compliance within your organization.
Cloud provider integrations
Use native integrations with major cloud providers to securely store and provision certificates, automate certificate renewals, and support your cloud-native infrastructure.
Machine integrations
Machines are endpoint systems—such as load balancers, web servers, and cloud services—where certificates are provisioned and installed. These integrations allow Venafi to connect directly to application keystores, helping you manage the full certificate lifecycle across your infrastructure.
Once you create a machine, Next-Gen Trust Security can provision certificates automatically to supported platforms.
Note: Errors will appear if you view details, create machines, or provision certificates for unsupported machine types in your Machines list. To fix this, manually delete the unsupported machines.