Venafi Integration with TigerTrust
TigerTrust integrates with Venafi Trust Protection Platform (TPP) and Venafi as a Service (VaaS) to extend machine identity management capabilities.
Integration Overview
TigerTrust complements Venafi:
- Edge Deployment: Extend Venafi to Kubernetes and edge
- Multi-Cloud: Unified management across clouds
- Automation: Enhanced workflow automation
- Discovery: Extended certificate discovery
Venafi TPP Integration
Configure Venafi TPP with:
- Endpoint URL
- Authentication type (token or certificate)
- Policy sync settings and interval
- Policy folder mapping
Venafi as a Service
Configure VaaS with:
- API key
- Application name
- Issuing template
Policy Synchronization
Sync policies between TigerTrust and Venafi:
- Bidirectional sync support
- Configurable sync fields (key algorithm, size, validity, etc.)
- Conflict resolution rules
Certificate Operations
Request via Venafi: Request certificates through Venafi policy with TigerTrust handling deployment to Kubernetes or other targets.
Discovery Sync:
- Discover certificates not in Venafi
- Sync to Venafi inventory
- Unified visibility
Use Cases
Kubernetes Integration:
- cert-manager with Venafi issuer
- TigerTrust for enhanced monitoring
- Combined policy enforcement
Multi-Cloud:
- Venafi as policy engine
- TigerTrust for deployment
- Unified management
Getting Started
- Configure API Access: Set up Venafi API credentials
- Add Integration: Configure Venafi in TigerTrust
- Enable Sync: Start policy synchronization
- Import Inventory: Sync certificate inventory
- Configure Workflows: Set up automation
TigerTrust's Venafi integration extends your machine identity management capabilities while maintaining Venafi as the policy authority.