Certificate Authority

Adaptable CA

3min

This document shows you how to configure the Futurex KMES Series 3 for integration with Venafi Trust Protection Platform (TPP) through its Adaptable CA functionality.

The instructions focus on steps specific to TPP integration and assume you have completed the basic KMES Series 3 setup. For additional information and setup instructions for the KMES Series 3, see the relevant user guide. This document also assumes you have completed the basic Venafi TPP setup.

About Venafi

From the Venafi TPP datasheet: Venafi Trust Protection Platform manages, secures, and protects keys and certificates, delivering an enterprise-grade platform that provides enterprise-wide security, operational efficiency, and organizational compliance.

Adaptable CA

From the Venafi documentation website: Venafi builds and delivers software drivers designed to connect with many of the most common certificate authorities (CAs), application servers, and enterprise monitoring systems for notification use cases. But if the Venafi Driver Library does not include the driver you need, you can use a Venafi Adaptable Driver. In fact, because they are customizable, you can use an Adaptable driver in place of an existing driver to provide tighter integration between your business processes and Trust Protection Platform.

Adaptable drivers provide a common set of variables required by the majority of applicable use cases that are supported by Trust Protection Platform natively. Some Adaptable drivers also let you define additional text fields, yes/no (Boolean) fields, and a password credential field, which you can then use to elicit different behaviors or to pass additional data to the system or service to which you are integrating

Adaptable drivers depend on a Microsoft PowerShell script hosted in your local environment to execute functions corresponding to standard certificate lifecycle stages or Trust Protection Platform events.

Integration overview

This guide covers the following tasks:

  1. Configure general KMES Series 3 settings.
  2. Configure KMES TLS communication.
  3. Configure the Adaptable CA driver.
  4. Configure Venafi TPP to use the Futurex Adaptable CA driver.
  5. Test a certificate request, approval, and issuance.

The following sections show you how to perform these tasks.