Quick Start Guide

Quick Start

This guide walks you through setting up TigerTrust and discovering your first certificates.

Step 1: Create API Key

1. Log into your TigerTrust dashboard
2. Navigate to Settings → API Keys
3. Click Create API Key
4. Select type: Agent
5. Copy the generated key (starts with ak_)

Step 2: Install the Agent

# Linux/macOS
curl -LO https://releases.tigertrust.io/agent/latest/tigertrust-agent-linux-amd64
chmod +x tigertrust-agent-linux-amd64
sudo mv tigertrust-agent-linux-amd64 /usr/local/bin/tigertrust-agent

Step 3: Configure the Agent

Create /etc/tigertrust/agent.yaml:

collector:
  base_url: "https://collector.tigertrust.io"
  api_key: "ak_your_api_key_here"

discovery:
  local:
    enabled: true
    scan_paths:
      - /etc/ssl
      - /etc/nginx/ssl
      - /etc/apache2/ssl

Step 4: Run the Agent

tigertrust-agent -config=/etc/tigertrust/agent.yaml

The agent will:

• Register with TigerTrust
• Scan configured paths for certificates
• Submit discovered certificates to the dashboard

Step 5: View Discovered Certificates

1. Open the TigerTrust dashboard
2. Navigate to Certificates → Discovered
3. Review the certificates found by the agent

Step 6: Import and Manage

For each certificate you want to manage:

1. Click Import on the discovered certificate
2. Configure renewal settings:

- Renewal threshold (days before expiry)

- Renewal method (ACME, Manual CSR, CA API)

1. Configure deployment targets
2. Enable auto-renewal

Step 7: Set Up Alerts

1. Navigate to Alerts → Rules
2. Create expiration alert rule:

- Trigger: 30, 14, 7, 1 days before expiry

- Channels: Email, Slack, Teams

What's Next?

• Agent Configuration - Advanced agent settings
• Certificate Discovery - Discovery scan types
• Auto-Renewal - Configure automatic renewals
• API Reference - Integrate with your systems