About machines¶
In the context of machine identity security, a machine refers to a specific instance or endpoint where certificates are managed and provisioned. This can include physical servers, virtual machines, cloud instances, or any other type of computing resource that requires a digital certificate for secure communications.
Key points about machines¶
-
Machine identity: Each machine has a unique identity that is managed through the Venafi Control Plane for Machine Identities. This identity is tied to the certificates that are issued and installed on that machine.
-
Certificate management: Machines are the primary entities for which certificates are provisioned, renewed, and monitored. You can manage the entire lifecycle of certificates associated with these machines.
-
Integration with keystores: Machines can be configured to connect to various keystores (e.g., AWS, Azure, Google Cloud) where certificates are stored and managed.
-
Discovery and provisioning: Venafi provides capabilities to discover machines in your environment and provision certificates to them automatically, ensuring that all necessary endpoints are secured.
-
Role in installations: In the context of installations, creating a machine allows TLS Protect Cloud to connect directly to keystores where applications keep their certificates, facilitating the management of machine identities.
Next steps¶
Learn how to create a new machine.