What is key Manager Plus?

Safeguarding data in transit has always been a big challenge for security administrators. While SSH keys have helped organisations ensure security in remote administrative access and data transfer, digital keys present some unique challenges.

Usually, SSH keys are left un-monitored and un-managed, making organisations vulnerable to cyber attacks. In the absence of an automated system, getting the list of all the keys in use, finding and restricting access privileges, and ensuring periodic rotation is a herculean task.

Similarly, managing a Secure Socket Layer (SSL) environment can be daunting when organizations use a large number of SSL certificates issued by different vendors with varying validity periods. On the other hand, SSL certificates left un-monitored and un-managed could expire, or rogue/invalid certificates could be used. Both scenarios could lead to service downtime or display of error messages that would destroy customer trust in data security and, in extreme cases, even result in security breaches.

ManageEngine Key Manager Plus has been designed to solve all these issues and serves a one-stop solution for managing all digital identities.

SSL Certificate Management 

Discover all SSL certificates deployed in the network.

Centralized Inventory
Consolidate all discovered certificates in a secure, centralized repository.

Deploy Certificates
Deploy newly acquired certificates to their respective domain servers.

Certificate Expiration Alert
Receive alerts about the certificates that are about to expire.

Wildcard deployment details
Get a holistic view of all wildcard certificates deployed in your organisation.

Let’s Encrypt integration
End-to-end certificate life cycle management with Let’s Encrypt.

Manage Active Directory user certificates
Discover, track and manage certificates mapped to user accounts in the Active Directory.

Manage certificates in MS Certificate Store
Discover, track and manage certificates from Microsoft Certificate Store.

SSH Certificate Management 

Discover SSH systems in the network, enumerate users, and private keys.

Consolidate and store
Consolidate all discovered SSH keys in a secure, centralized repository.

Create and deploy
Create new key pairs, associate with users, and deploy on target systems.

Rotate keys periodically
Rotate key pairs automatically at periodic intervals.

Launch direct connection
Launch direct SSH connection with target systems.

View key user relationship
Get a holistic view of the key to user relationship across the organization.

Push keys
Push private keys to remote user accounts.

Configure key management policy
Enforce policies for key creation. Remove all existing keys for a fresh start or append new keys.

key features of Key manager plus


Scheduled database backup

Provision for scheduled backup of entire database for disaster recovery.

active directory integration

Import users / user groups from Windows Active Directory and also leverage the authentication mechanism.

restrict and regulate access

Associate specific resources to users and establish granular access controls.

alerts and audits

Audit and track all user activities and generate reports.

ensure compliance

Manage SSH keys better, comply with regulations such as SOX, FISMA, PCI, and HIPAA.

canned reports

Instant, comprehensive reports on all key management activities.
Benefits of Key Manager Plus
  • Gain complete visibility of all SSH keys and SSL certificates present in the organisation and achieve centralised control.
  • Remove all existing public key-user trust relationships and generate new key pairs. Deploy the new public keys to users in bulk with just a couple of clicks.
  • Tighten security by periodically rotating keys and prevent their misuse.
  • Launch direct connections to remote devices by using the keys present in Key Manager Plus, saving time and enhancing productivity.
  • Delete any unwanted keys from the database, terminate access immediately, and prevent violations by obsolete accounts.
  • Get customisable, recurring notifications when the validity of an SSL certificate is about to expire.
  • Eliminate service downtime or display of error messages due to expired/invalid/rogue SSL certificates.
  • Supported platforms for product installation: Windows, Linux
  • Authentication:Local, Active Directory (for Windows)
  • Supported SSH version: V2
  • Backend database: PostgreSQL (bundled with the product)
  • Discovery: Agentless
  • Supported protocolsRSA (1024/2048/4096 bit) and DSA (1024 bit)

book your personalised web demo today


Contact Us Today
Melbourne Office
Level 3,480 Collins St
Melbourne VIC 3000
Email: info@integralis.com.au
Support Centre & Logistics
Unit 1,12 Network Drive
Carrum Downs VIC 3201
Email: info@integralis.com.au
Sydney Office
Level 40,100 Miller St
North Sydney NSW 2060
Email: info@integralis.com.au