ManageEngine Key Manager Plus is a web-based key management solution that helps you consolidate, control, manage, monitor, and audit the entire life cycle of SSH (Secure Shell) keys and SSL (Secure Sockets Layer) certificates. It provides visibility into the SSH and SSL environments and helps administrators take total control of the keys to preempt breaches and compliance issues.
Key Manager Plus is integrated with ManageEngine’s Password Manager Pro, to provide unified privileged identity management platform.
Safeguarding data in transit has always been a big challenge for security administrators. While SSH keys have helped organizations ensure security in remote administrative access and data transfer, digital keys present some unique challenges.
Usually, SSH keys are left unmonitored and unmanaged, making organizations vulnerable to cyber attacks. In the absence of an automated system, getting the list of all the keys in use, finding and restricting access privileges, and ensuring periodic rotation is a herculean task.
Similarly, managing a Secure Socket Layer (SSL) environment can be daunting when organizations use a large number of SSL certificates issued by different vendors with varying validity periods. On the other hand, SSL certificates left unmonitored and unmanaged could expire, or rogue/invalid certificates could be used. Both scenarios could lead to service downtime or display of error messages that would destroy customer trust in data security and, in extreme cases, even result in security breaches.
ManageEngine Key Manager Plus has been designed to solve all these issues and serves a one-stop solution for managing all digital identities.
Discover all SSL certificates deployed in the network.
Consolidate all discovered certificates in a secure, centralized repository.
Deploy newly acquired certificates to their respective domain servers.
Receive alerts about the certificates that are about to expire.
Get a holistic view of all wildcard certificates deployed in your organization.
End-to-end certificate life cycle management with Let's Encrypt.
Discover, track and manage certificates mapped to user accounts in the Active Directory.
Discover, track and manage certificates from Microsoft Certificate Store.
Discover SSH systems in the network, enumerate users, and private keys.
Consolidate all discovered SSH keys in a secure, centralized repository.
Create new key pairs, associate with users, and deploy on target systems.
Rotate key pairs automatically at periodic intervals.
Launch direct SSH connection with target systems.
Get a holistic view of the key to user relationship across the organization.
Push private keys to remote user accounts.
Enforce policies for key creation. Remove all existing keys for a fresh start or append new keys.
Provision for scheduled backup of entire database for disaster recovery.
Import users / user groups from Windows Active Directory and also leverage the authentication mechanism.
Associate specific resources to users and establish granular access controls.
Audit and track all user activities and generate reports.
Manage SSH keys better, comply with regulations such as SOX, FISMA, PCI, and HIPAA.
Instant, comprehensive reports on all key management activities.
ManageEngine’s Key Manager Plus enables us to stay on top of SSL certificates for all of our websites. With Key Manager Plus, we’re able to monitor which certificates are nearing expiration and roll out new certificates in a timely manner.Ken Odibe Senior cloud infrastructure consultant, Sapphire systems.
Check out this video to learn how you can enforce automation on managing certificate life cycles (request, acquire, deploy, track and renew) for your public facing websites by leveraging Key Manager Plus' integration with Let's Encrypt CA.
Supported platforms for product installation:
Local, Active Directory (for Windows)
Supported SSH version:
PostgreSQL (bundled with the product)
RSA (1024/2048/4096 bit) and DSA (1024 bit)
Manage upto 50 keys*
Valid for 30-days. Automatically turns into free edition at the end of the trial.
The term 'Keys' refers to the number of SSH private keys plus SSL certificates plus any other digital key being managed.