Keep services online, customers safe, and compliance effortless

One platform, zero certificate chaos

Scale confidently with NeoCertManager.

Korea’s first SSL certificate lifecycle management system based on the KMIP international standard

NeoCertManager

NeoCertManager is Korea’s first KMIP 3.0-based SSL certificate end-to-end automation solution, centrally and consistently controlling issuance, deployment, renewal, and revocation based on standard policies.

#Certificate #SSL #TLS #CertificateManagement #SSLCertificateAutomation #AutomatedDeployment #ExpirationPrevention #KMIP #CA/BForum #PrivateCA #CA #CertificateValidity #DigiCert #Sectigo

As global security policies tighten, certificate validity periods are expected to shorten (398 days → 90 days → 45 days), driving the need for automated certificate management systems across all enterprises and institutions.  Shortened certificate rotation cycles can lead not only to human errors from manual operations, but also to service outages due to expiration and increased security exposure—ultimately undermining organizational trust.

NeoCertManager provides enterprise-wide visibility into certificate inventory and remaining validity through a discovery capability that finds in-use SSL certificates and enables unified monitoring. It also automates SSL/TLS certificate renewal to ensure secure communications for web services—delivering an automated management solution.

Key Features

1
Centralized certificate management
Maximize management efficiency by automating the full SSL/TLS lifecycle—from issuance and renewal to revocation
• Resolve complex certificate lifecycle management challenges
• Strengthen certificate private key security with HSM-based protection
• Reduce operating costs and improve management efficiency
2
Ensure stability and trust
Support verified certificate issuance through integration with global CAs
• Significantly reduce certificate management errors and expiration incidents
• Greatly improve service availability and stability
• Establish a global-standard certificate operations system
3
Proven across all industries—finance, manufacturing, and public sector
Widely adopted from SMBs to enterprises, demonstrating reliability in the domestic SSL/TLS market
• Play a key role in advancing security infrastructure
• Lead the foundation of digital trust
• Enhance competitiveness in security technology
4
Prepare for future security environments
Support the latest TLS protocols and optimize for cloud environments to build a next-generation security services foundation
• Drive continuous technology advancement
• Improve organizational trust through automated certificate management
• Proactively respond to global security trends

Key Capabilities

1
Certificate discovery and registration
Scan and manage certificates deployed across your network
· Discover SSL certificates installed on web servers and load balancers
· Discover and display certificates from all vendors (CN, issuing CA, issue date, expiration date)
 - Discover private CAs / public CAs
2
Automatic renewal & deployment (Auto Renewal & Deployment)
1) Automatically renew certificates approaching expiration
· Initial certificate: Requires admin request or registration
· Renewal certificate: Automatically renew via KCM after checking the expiration date
 - Configurable renewal schedule (e.g., 10 days before expiry)
· Optional workflow: Renew after intermediate administrator approval upon request
· Validation methods
 ① Email: manual validation
 ② DNS (CNAME / DNS TXT): manual validation
 ③ HTTP validation: automated validation for issuance
3
Automatic renewal & deployment (Auto Renewal & Deployment)
2) Automatically deploy issued certificates to servers
· After checking certificate status, automatically deploy issued certificates to registered servers
· Register deployment servers in KCM and map servers to certificates
 ① Upload certificates to a temporary path on the target server
 ② Apply certificate: replace with the newly issued certificate
 ③ Certificate rollback: if installation errors occur (connection error or fingerprint mismatch), keep the previous SSL certificate
· Deployable servers: Apache, NginX, WebtoB, IIS, Tomcat, Weblogic, Jboss
View More
4
Notification & record (Notification & Record)
Alerts for certificate expiration and deployment status
· Support Email, Slack, and REST
· Notification policy settings: certificate expiration, issuance status, auto-renewal, deployment server status
· Configure sender email via SMTP
· Support bulk recipient registration (with CC capability)
5
Revocations & replacements (Revocations & Replacements)
Revoke and reissue issued certificates
· Provide certificate revocation when a certificate is not in use
· Provide certificate reissue when domains change
View More

Tech Note

Cyber ​​Security & Encryption

[NeoCertManager] "CA/B Forum Confirms Shortening of SSL Certificate Validity Period in April 2024"

How Are You Preparing for the Confirmed Shortening of SSL Certificate Validity Periods? With the reduction in validity periods, renewals that previously occurred once a year will now need to be done m

#NeoCertManager #인증서관리 #SSL인증서 #TLS #SSL/TLS #CA/B포럼 #인증서자동관리 #인증서관리자동화 #SSL인증서유효기간단축 #HTTPS #https #SSL인증서유효기간
NeoCertManager Sales
Read more >

Industries

Automotive Software & IT Services Retail & Consumer Goods Government & Public Sector Healthcare Energy Financial Services

Key Clients

Automotive & Railways
  • 경신 logo image
Financial Services
  • 카카오뱅크 logo image
  • 한국은행 logo image
  • 하나금융TI logo image
  • 메리츠증권 logo image
  • 신한은행 logo image
  • 미래에셋캐피탈 logo image
  • 유안타증권 logo image
  • 토스증권 logo image
  • 아이엠뱅크 logo image
Retail & Consumer Goods
  • LG U+ logo image
  • 카카오 엔터프라이즈 logo image
  • CJ ENM logo image
  • BGF 네트웍스 logo image

Share MDS Intelligence content on your SNS!

SSL/TLS Certificate Management Sales Contact

Contact Us Directly

An MDS Intelligence NeoCertManager specialist will assist you accurately and promptly.

+82 31-601-4311
Inquire About NeoCertManager