Replacing Venafi Zero Touch PKI, Cyberark Certificate Management is a SaaS-based alternative to creating and running an internal PKI. It can be configured and managed in any way needed, in conjunction with multiple CAs and options for security and traceability.
N/A
ManageEngine Key Manager Plus
Score 8.0 out of 10
N/A
ManageEngine Key Manager Plus is a web-based key management solution that helps users consolidate, control, manage, monitor, and audit the entire life cycle of SSH (Secure Shell) keys and SSL (Secure Sockets Layer) certificates. It provides visibility into the SSH and SSL environments and helps administrators take total control of the keys to preempt breaches and compliance issues.
Venafi allows an engineer to automate the full provisioning process not only installing the certificate to multiple applications but also configuring specific requirements for that application.
The tool is really good for the enterprise having major exposure to public-facing web applications and this can be used to maintain the SSL Certificate Inventory and automated alerts can be set so that SSL Certificates can be renewed before the expiry. Organizations who don't have the visibility of the SSL Certificate deployed across various and then tool can be used to identify the certificates and inventory can be prepared. This tool must be handled by Information Security Team since the private key information is confidential in nature. This tool has the capability to extract the information from various cloud instances including Azure, GCP, and AWS. I will not recommend this tool for organizations that don't have many public-facing apps and for 8 to 10 apps this can be managed manually rather than purchasing this tool.
Once set up, it's quite simple to use. It saves time, avoids errors, automates everything, and requires little manual labor to operate across several systems.
Overall good product. The solution was able to meet our business case. It is not an expensive product as compared to other key vault solutions. Implementation is an easy and user-friendly console. We got the training on how to use the solution after it was deployed. It is widely used by many organizations. With this solution, we managed to create a centralized SSL Certificates Inventory and other details which were very difficult to extract using the manual search.
Technical Support is good and available 24/7. Licensing Policy is also good and we have taken a yearly subscription model. Integration with Digi Cert is also possible. Secure Solution for management of SSL Certificates Life Cycle. We have not faced any issue with the deployment of the product and not many bugs in the products except some false positives and false negatives ratios.
Each public certificate provider has their own flavor of certificate automation, but they are not that flexible and only work with their own products. Certified Security Solutions CMS is a lightweight tool that directly competes with Venafi, but is not nearly as robust or feature risk. This is a straight forward management solution that is best fitted for the smaller companies.
An outage is a very devastating event to any large corporation and can cost millions. Venafi's ability to prevent these outages has proven to be a great return on investment for our environment and has helped protect the bottom line.
Venafi automates certificate installation with an included feature to schedule the install in advance. This is a great benefit of the tool because it eliminates human error and prevents any forgotten or overlooked certificates to be renewed. After installation Venafi will also validate the certificate to confirm that it has been installed properly. This shows just how thorough this tool really is.
Security compliance is of the utmost importance in a large organization for auditing purposes and certificate security policies but at times can prove to be difficult to enforce. Venafi has proven to play a pivotal role in enforcing these policies in our environment.
