Power utilities can’t afford outages – and certainly not from expired certificates. Trying to remember where all your non-Microsoft certificates are located and when they are about to expire can be a daunting task. To solve this problem, one of the nation’s top 5 largest power utilities recently selected Revocent’s CertAccord Enterprise to automate its…

Read More

GlassFish is an open source Java application server from Eclipse. This guide will walk you through the steps of configuring a GlassFish server to use an X.509 certificate created from Microsoft ADCS (PKI). GlassFish uses a certificate to provide secure TLS (formerly SSL) communications via HTTPS.  GlassFish requires the certificate to be in a Java…

Read More

CertAccord Enterprise 5.0 Provides More Customer Request Features CertAccord Enterprise 5.0 is now available from Revocent.  This release delivers new customer requested features such as the ability to customize X.509 digital certificate subject and subject alternative names, custom Certificate Purposes, and many other improvements. Customers have been asking for more control over how certificate subjects…

Read More

How to Detect Expiring Certificates Elephants and Other Hi-Tech Methods All X.509 digital certificates expire. It’s only a question of time. If you follow best practices then your end point certificates expire in two years or less.  Once a certificate is expired it is considered invalid and likely will cause some kind of service outage. …

Read More

CertAccord Enterprise 4.12 Adds User Identity Certificate Support CertAccord Enterprise 4.12 is now available from Revocent.  This release adds improved support for user identity X.509 digital certificates in addition to the machine (computer) identity support that has been supported since CertAccord was launched.  User identity certificates can be automatically provisioned and renewed from Microsoft ADCS…

Read More

Why Self-Signed Certificates Are Evil Self-signed X.509 digital certificates are often used inside enterprises of all sizes on devices and application servers which use HTTPS.  Its often so common place in some enterprises that its easy to forget self-signed certificates are evil.  Maybe not evil in a deliberate sense, but certainly in an effective manner. …

Read More

CertAccord Enterprise 4.11 Adds Key User Requested Features CertAccord Enterprise 4.11  has been released by Revocent and provides key new features requested by enterprise customers including native RPM and DEB packages for Linux, maintenance periods, and Agent CLI improvements. Many customers have been requesting the CertAccord Enterprise Agent be install-able as a native Linux RPM…

Read More

How To Create Trusted X.509 Certificates On MacOS X Creating trusted enterprise certificates on Apple’s MacOS X has never been easy, but it can be. In the traditional process you have to create a private key, create a Certificate Signing Request (CSR), submit the CSR to a Certificate Authority (CA), retrieve the issued certificate, install…

Read More