See below for browsing the certificates managed by Certificate Hub.

To browse certificates

  1. Go to Control > Certificates.
  2. Define certificate views.
    • Unfold the Columns list to select the properties you want to display as columns.
    • Click Show Filter Options to display a filtering form below each column name.
    • Select Show Filter Options / Remove all filters to remove all filters.
    • Select Show Filter Options / <column> to remove the filters on the <column> column.
    • Click Show Filter Options to hide the filtering options and keep the filters.
    • Click Items per page at the bottom of the page, select the number of items to view per page: 10, 25, 50, or 100.
    • Click Reset layout to remove all the column and filter customizations.
    • Click the refresh icon to rerun the query with the current filters.
  3. Select Update > Save As to save the view. Alternatively, you can click Update to overwrite the currently selected view.
  4. For each certificate in the main grid, check the following parameters.

Common Name

The common name (CN) of the certificate subject. In SSL/TLS certificates, this value usually matches the Domains value.

Serial Number

The serial number (SN) of the certificate.

Description

A brief description of the certificate purpose.

Revocation Reason

The revocation reason, when the value of the Validity column is Revoked.

Issuer

The common name (CN) of the certificate issuer.

Expires

The Not After date of the certificate.

Auto Renew

Yes if the automatic renewal is enabled as explained in Automating certificate renewalNo otherwise.

Actions

The actions supported by the certificate. See the following sections for details.

Domains

The Domains certified by the SSL/TLS certificate.

Key Algorithm

The algorithm used to generate the key pair.

Key State

The validity state of the key.

Name

The concatenation of the following certificate field values. 

  • Common Name
  • Issuer
  • Hash

Owner

The email address of the person responsible for the certificate – for example, the Web server operator.

Signature Algorithm

The signature hash algorithm.

Validity

The certificate status:

  • Empty for certificates from unknown sources (because either imported or discovered);
  • Issued for certificates from known sources and still valid;
  • Revoked for certificates from known sources and already revoked as explained in Revoking a certificate.

Valid From

The Not Before date of the certificate.

Endpoints

The host and port where a discovery scan discovered the certificate.

Key Manager

The Key Manager, if a Key Manager generated the key pair.

Source Type

The type of the certificate Source.

Certificate Access Tags

One or several Certificate Access Tags

Certificate Roles with any of these tags will grant permissions on the certificate.

<custom>

Business-specific Custom Fields defined by your organization.

BASICS

Click the plus button (plus) and select the BASICS tab to display the following certificate details.

Setting

Description

Owner

The email address of the person responsible for the certificate. For example, the Web server operator.

Description

A description of the certificate purpose.

​Distinguished Name

The ​distinguished name (DN) of the certificate.

Certificate Authority

The certificate authority that issued the certificate.

Source Type

The type of the certificate Source.

Serial

The serial number (SN) of the certificate.

Valid From

The Not Before date of the certificate.

Valid To

The Not After date of the certificate.

SAN

The list of subject alternative names (SAN) of the certificate.

Key Length

The length of the certificate key.

Signature Algorithm

The signature hash algorithm.

Validity

The certificate status: empty for certificates from unknown sources (because either imported or discovered); Issued for certificates from known sources and still valid; Revoked for certificates from known sources and already revoked as explained in Revoking a certificate.

CERTIFICATE ACCESS TAGS

Click the plus button (plus) and select the CERTIFICATE ACCESS TAGS tab to display the list of Certificate Access Tags.

The Certificate Roles with any of these tags will grant permissions on the certificate.

CUSTOM FIELDS

Click the plus button (plus) and select the the CERTIFICATE ACCESS TAGS tab to display the business-specific Custom Fields defined by your organization.

EXISTING DESTINATIONS

Click the plus button (plus) and select the EXISTING DESTINATIONS tab to display the list of Destinations where Certificate Hub has pushed the certificate.

PLANNED DESTINATIONS

Click the plus button (plus) and select the PLANNED DESTINATIONS tab to display the list of Destinations where Certificate Hub will push the certificate upon auto-renewal.

DOMAINS

Click the plus button (plus) and select the DOMAINS tab to display the list of certified domains.

REPLACES

Click the plus button (plus) and select the REPLACES tab to display the certificate renewed by the current certificate.

ENDPOINTS

Click the plus button (plus) and select the ENDPOINTS tab to display the Endpoint where a Discovery Scanner discovered the certificate (if any).

Setting

Description

​Host Name

​The name of the endpoint host.

Port

The endpoint port.

Service

The service exposed on the endpoint.

Service Vendor

The vendor of the service exposed on the endpoint.

Service Vendor Version

The version of the vendor services exposed on the endpoint.

Cipher Suites

The list of cipher suites that a service accepts.

OS Type

The operating system type of the endpoint.

Completed

The time and date the certificate discovery scan was completed.

CERTIFICATES

Click the plus button (plus) and select the CERTIFICATES tab to display the PEM encoding of:

  • The certificate.
  • The certificate certification chain.
  • The certificate signing request (CSR).