Implementing Zero Touch PKI¶
Zero Touch PKI deployment is a collaboration between you and CyberArk. During the project, we build your instance, provide onboarding, integrate the connectors that install certificates in your environment, and validate the deployment. Finally, we hand over a fully functional private PKI solution to replace your current one.
Project phases¶
The project has these phases:
- Requirements gathering: Establish requirements for your use case, including certificate authority (CA) design.
- Solution design: Build the instance. Create or import root and subordinate CAs, define issuance policies, and add your administrator account.
- Single sign-on: Integrate your chosen single sign-on provider.
- Onboarding: Provide a training session to get you started with Zero Touch PKI.
- Connectors: Integrate included connectors such as CyberArk Certificate Manager - SaaS or the Auto Enrollment Connector (AEC), along with any connectors you've purchased.
- Platform review: Validate your instance for production use.
Next steps¶
To learn about available root and subordinate CA design options, see Deployment models. To learn how to configure Zero Touch PKI as an administrator, see Configuration overview.