Skip to content

Run a ZTPKI certificate import manually

For an existing Zero Touch PKI (ZTPKI) CA connector in TLS Protect Cloud, you can run a certificate import job at any time.

IMPORTANT!

You cannot use existing ZTPKI certificate authorities you'd created before the certificate import feature was introduced. This is because the ZTPKI CA creation wizard did not include the Import step. ZTPKI CAs created before the import feature was added do not have the required Import tab. In this case, you'll need to create a new ZTPKI CA.

To import certificates from a ZTPKI CA manually

  1. Sign in to Venafi Control Plane.
  2. Click Integrations > Certificate Authorities.
  3. Find and click on an existing ZTPKI CA.
  4. Click the Import tab.
  5. (Optional) Modify the current ZTPKI policies (Product Options). Only certificates issued by the policies you select will be imported.
  6. (Optional) Modify the Import options.
  7. Click Import.

After completing this process, your TLS Protect Cloud inventory should reflect the imported certificates issued by the selected ZTPKI policy. Verify the results in the Certificate Inventory. Use the filter or search features to confirm that the expected certificates are present.