Home
SSH+
Control SSH access and key rotation at scale with an SSH key lifecycle management solution.
SSH+ User Guide
Configuring Certificate Authority
Creating Certificate Authority

CERT+
Automate certificate lifecycle management including issuance, discovery, renewal, and deployment, across public and private trust CAs. Assess, prioritize, and plan your migration to quantum-safe encryption with the Quantum Trust Hub add-on module.
PKI+
Provision, govern and scale private trust certificates with a Post Quantum ready cloud based Enterprise PKI-as-a-Service.
SIGN+
Secure software, firmware, and containers with a comprehensive enterprise code signing solution.
SSH+
Control SSH access and key rotation at scale with an SSH key lifecycle management solution.
KUBE+
Unify DevOps and Security teams by managing certificates with a Kubernetes-native certificate lifecycle management solution.
DDI+
Manage domain registration, renewal, decommissioning, and other security controls with an end-to-end domain lifecycle management solution.
ADC+
Automate and orchestrate application delivery infrastructure at scale with an ADC lifecycle automation platform.
Platform
Manage policy and automation across all of the products and modules in the AVX ONE platform.
AppViewX Setup
Get detailed instructions for setting up AVX ONE in on-premises or SaaS deployments.
Release Artifacts
Review new features, fixes, and security advisories with official AppViewX release documentation.

Creating Certificate Authority

To create certificate authority:

Go to (Menu) icon > SSH+ > Administration > Certificate Authority.
On the Certificate Authority page, select the + Create CA.

Enter the following details:

Table 1. Field description for General Information section
Field	Description
*CA Name	Enter a meaningful and informative SSH CA name.
*Private Key	Select an option to store the private key: AppViewX - Select this option to store the private key within AppViewX. HSM - Select this option to store the private key in a HSM. Note: Before choosing this option, ensure that the HSM vendor is configured under Platform > VAULT & SECURITY After selecting HSM, the Select HSM dropdown menu will appear. Choose your preferred HSM vendor from the list.
*CA Type	Select the type of certificates to be issued by the certificate authority.
*Algorithm	Select the algorithm to be used to generate digital signature of the CA and the SSH certificates issued by it.
*Bit Length	Select the bit length to be used to generate the digital signature.
*Validity	Duration for which the certificate authority would be valid.
Comment	Enter remarks specific to the CA.
* - Mandatory fields

Click Create.
The certificate is created and displayed in the inventory.

What to do next:

To download certificates, select the checkbox against the CA Name you want to download and click Actions > Download.
To discover SSH keys, perform network scans, or find discovery status, see Discovering Keys.

AppViewX