What is TigerTrust?
TigerTrust is an enterprise Certificate Lifecycle Management (CLM) and Machine Identity Management platform. It automates certificate discovery, renewal, and deployment across cloud-native infrastructures.
Key Capabilities
- Certificate Discovery: Automatically discover certificates across your infrastructure including filesystems, Kubernetes, cloud providers, and network endpoints
- Lifecycle Automation: Automate certificate renewal, deployment, and rotation with zero-downtime
- Multi-Cloud Support: Native integrations with AWS, Azure, GCP, and on-premises infrastructure
- SSH Key Management: Discover, rotate, and manage SSH keys across your fleet
- Compliance & Audit: Complete audit trails and compliance reporting for SOC2, PCI-DSS, and HIPAA
Architecture Overview
TigerTrust uses a distributed architecture with these core components:
| Component | Description |
|---|---|
| Dashboard | React-based web interface for certificate management |
| Backend API | Node.js/Express API with 39+ route modules |
| Collector | Go service for agent communication and task distribution |
| Agent | Lightweight Go agent deployed on customer infrastructure |
| PKI Core | Go service for certificate authority operations |
| Workers | Background processors for renewal, alerts, and automation |
Security Model
TigerTrust follows a zero-trust security model:
- Outbound-only connections: Agents only initiate outbound HTTPS connections
- API key authentication: Per-agent API keys with workspace isolation
- Private keys never leave premise: CSR generation happens locally on agents
- TLS 1.2+ encryption: All communication encrypted in transit
- Multi-tenant isolation: Workspace-based data isolation
Getting Started
- Create an account at app.tigertrust.io
- Generate an API key for your workspace
- Install the agent on your infrastructure
- Discover certificates automatically on agent startup
- Configure renewals and deployment automation
Continue to the Installation Guide to set up TigerTrust.