Skip to content

Welcome to integrations

As organizations adopt multi-cloud and hybrid environments, managing digital identities, securing keys, and automating certificate lifecycles is critical. Venafi is at the forefront, enabling secure-by-design architectures through deep integrations with leading identity providers, cloud platforms, and certificate authorities.

With TLS Protect Cloud, you can integrate seamlessly across key categories:

  • Authentication and identity providers: Centralize access and user identity management.
  • Certificate authorities: Automate certificate issuance and lifecycle management from both public and private CAs.
  • Cloud providers: Provision and manage certificates in your cloud environments.
  • Machines: Connect to and manage certificate lifecycles on application endpoints like load balancers, databases, and web servers.
  • Notifications: Receive real-time alerts and updates through collaboration tools or webhook-enabled systems.

Authentication and identity provider integrations

Integrate with your enterprise identity providers or credential managers to enable secure, automated authentication and access control within your Venafi workflows.

Configure CyberArk Connection

Certificate authority integrations

Venafi supports a broad range of public, private, and custom certificate authorities. These integrations simplify certificate issuance and help enforce policy across all your workloads.

Public CAs

Integrate with trusted third-party certificate authorities for public TLS/SSL and code signing certificates.

Add DigiCert CA Add Entrust CA Add GlobalSign CA Add GlobalSign MSSL CA Add Let's Encrypt (ACMEv2) CA

Private CAs

Use private CAs to issue certificates for internal systems and services, ensuring security and compliance within your organization.

Add Zero Touch PKI CA Add Microsoft AD CS CA

Custom CAs

Extend TLS Protect Cloud with support for additional or in-house CAs using the CA Connector Framework.

Using the CA Connector Framework Add EJBCA Add Sectigo

Cloud provider integrations

Use native integrations with major cloud providers to securely store and provision certificates, automate certificate renewals, and support your cloud-native infrastructure.

Configure AWS Connection Configure Azure Connection Configure Google Cloud Connection

Machine integrations

Machines are endpoint systems—such as load balancers, web servers, and cloud services—where certificates are provisioned and installed. These integrations allow Venafi to connect directly to application keystores, helping you manage the full certificate lifecycle across your infrastructure.

Once you create a machine, TLS Protect Cloud can provision certificates automatically to supported platforms.

Create a new machine Configure F5 BIG IP LTM Configure Microsoft IIS Configure Microsoft Windows (PowerShell) Configure Microsoft SQL Server Configure Common KeyStore Configure Citrix ADC Configure Imperva WAF Configure VMware NSX (AVI) Configure A10 Thunder ADC Configure Cloudflare

Notifications integrations

TLS Protect Cloud supports integrations with notification platforms and collaboration tools to help teams respond to certificate-related events in real time.

You can also use webhooks to push custom alerts to platforms like Slack or ServiceNow.

Configure PagerDuty Configure Zoom Team Chat Configure Webhooks