Automated Certificate Lifecycle Management for Apache HTTP Server Released

Apache CloudStack

Sectigo, a worldwide pioneer in digital certificates and automated Certificate Lifecycle Management (CLM), has released a new interface for Apache HTTP Server users. Sectigo developers collaborated with the Apache community to enhance this sophisticated automation functionality in Sectigo’s certificate management solution (SCM), Sectigo Certificate Manager.

Sectigo has introduced External Account Binding functionality to the Automated Certificate Management Environment (ACME) protocol for the Apache HTTP Server and made it available to the community for widespread use. As a result, Apache’s built-in ACME may now be used to automatically deploy Sectigo certificates to Apache HTTP web servers both inside and outside of the business firewall. Within SCM, enterprises may report on and manage all certificates on their Apache HTTP server.

Until now, organizations have been unable to leverage their Certificate Lifecycle Management (CLM) systems to issue credentials and automate the installation of certificates to their Apache HTTP servers with native ACME support, stated Sectigo. CLM suppliers provided third-party software solutions to assist automate the certificate installation process, but they are plagued with administrative issues and must all be deployed and maintained by the end-user, the company added.

Sectigo’s innovative technique would eliminate the requirement for Apache HTTP users to install additional software because the External Account Binding in the ACME protocol is built directly into Apache HTTP Server.

Apache HTTP Community

Photo Jason Soroko, CTO at PKI, Sectigo
“Sectigo is pleased to be part of the Apache HTTP community to deliver an enterprise-grade approach to Certificate Lifecycle Management to Apache HTTP users,” said Jason Soroko, CTO at PKI, Sectigo.

“Sectigo is pleased to be part of the Apache HTTP community to deliver an enterprise-grade approach to Certificate Lifecycle Management to Apache HTTP users,” said Jason Soroko, CTO at PKI, Sectigo. “Our latest integration allows businesses to eliminate the complexities and risks of managing wildcard and multi-domain certificates and keys without additional costs.”

“In this digital-first world, certificates establish digital trust for businesses to run every minute of the day. If every single certificate – sometimes hundreds of thousands – at an organization is not properly managed from discovery to issuance to renewal, businesses will stop running, outages will occur, and bad actors can cause real harm,” added Mr. Soroko. “Automation is key today, and the future of certificate automation is with ACME. We are proud to extend support of External Account Binding in ACME to the Apache user base.”

The new External Account Binding feature in ACME with Apache HTTP enables the issue of both public and private certificates, allowing the same automation tools to be used throughout the whole company network. Sectigo is also engaging web servers and load balancers throughout the world to integrate this functionality into all devices.

SCM is a CA-agnostic, cloud-based CLM platform designed to issue and manage digital certificate lifecycles in order to safeguard every human and machine identity throughout the company. Clients may utilize their investments with other CAs and manage the lifecycles through a centralized interface now that they can handle certificates from third-party CAs. SCM would integrate with key technology suppliers and provide powerful automation capabilities to adapt into any IT environment.