Greg,
As long as Venafi supports the importing and exporting of x509 certificate formats, Top Secret will work with Venafi. If it does, Venafi can generate the certificate and signn it, then export it out to TSS for import. Then when the certificate expires, Venafi can renew it, then export the renewed certificate to Top Secret.
Regards,
Joseph Porto - Broadcom Level 1 Support
Original Message:
Sent: Dec 15, 2021 07:24 AM
From: Greg Elspas
Subject: Integrating Venafi Certificate automation with Top Secret
We use a centralized certificate manager (Venafi). Venafi automates certificate provisioning to many of our non-mainframe platforms which reduces manual steps and errors. We would like to look at ways to automate certificate renewals on the mainframe and reduce some of the manual administrator steps such as generating CSR, logging into Venafi, requesting cert, downloading cert, uploading cert to mainframe, importing and keyringing cert in Top Secret. Has anyone had experience with integrating Venafi certificate automation or the like with the mainframe or Top Secret?