Home
CLM
Automate certificate lifecycle management including issuance, discovery, renewal, and deployment, across public and private trust CAs. Assess, prioritize, and plan your migration to quantum-safe encryption with the Quantum Trust Hub add-on module.
CLM User Guide
Certificate Actions
Migrating CAs (CA Switch)

CLM
Automate certificate lifecycle management including issuance, discovery, renewal, and deployment, across public and private trust CAs. Assess, prioritize, and plan your migration to quantum-safe encryption with the Quantum Trust Hub add-on module.
PKI
Provision, govern and scale private trust certificates with a Post Quantum ready cloud based Enterprise PKI-as-a-Service.
Code Signing
Secure software, firmware, and containers with a comprehensive enterprise code signing solution.
SSH
Control SSH access and key rotation at scale with an SSH key lifecycle management solution.
KUBE
Unify DevOps and Security teams by managing certificates with a Kubernetes-native certificate lifecycle management solution.
DDI
Manage domain registration, renewal, decommissioning, and other security controls with an end-to-end domain lifecycle management solution.
ADC
Automate and orchestrate application delivery infrastructure at scale with an ADC lifecycle automation platform.
Platform
Manage policy and automation across all of the products and modules in the AVX ONE platform.
AppViewX Setup
Get detailed instructions for setting up AVX ONE in on-premises or SaaS deployments.
Release Artifacts
Review new features, fixes, and security advisories with official AppViewX release documentation.

Migrating CAs (CA Switch)

The CA Switch feature in the Inventory module allows you to re-enroll certificates from one CA to another CA. Once triggered, the certificate migration readiness for every certificate will be shown in the Process Explorer, which needs to be validated before the CA switch is performed.

Supported CA Switch to AppViewX Native PKI CA

Note: As part of AppViewX's Crypto Agility initiative, the CA Switch feature now supports migrating end-entity certificates from supported external Certificate Authorities to AppViewX Native PKI CA, without disrupting the endpoint identity, usage, or application binding.

The following external CAs are supported as source CAs for switching to AppViewX Native PKI CA:


Source CA	Switch to AppViewX Native PKI CA
Google Certificate Authority Service (GCP CAS)	Supported
Microsoft Active Directory Certificate Services (ADCS / MSCA) Enterprise	Supported
EJBCA	Supported

Key capabilities include single or bulk migration (up to 100 certificates per batch), template mapping, attribute preservation (Subject DN, SANs, KU/EKU), and optional PQC algorithm support (Falcon, Dilithium, SPHINCS+).

For the complete procedure, readiness validation rules, cryptographic options, and bulk switch actions, see CA Switch to AppViewX Native PKI CA.

AppViewX