Cloud based Certification Authority
SCEPman
Cloud based Certification Authority
Issue x.509 client certificates to authenticate devices and users accessing your networks such as WiFi, LAN and VPN. Enjoy full integration with Intune and Jamf Pro (SCEP) for a simple issuing and renewal workflow. Certificates are immediately revoked when you disable the user or device in Intune, Jamf Pro or Entra ID (Realtime Auto Revocation).
SCEPman is a full-featured private PKI. You can issue (TLS/SSL-) certificates to your servers (e.g. web-servers), network components or Domain Controllers using either our web GUI (CSR or form-based), REST API, or a SCEP client. Enable automatic certificate renewal via EST (mTLS).
With SCEPman you can issue certificates for code signing. This allows you to sign the code of your executables and scripts (e.g. Power Shell scripts, VBA macros, ...) to reduce the risk of unwanted software being executed.
Use SCEPman to issue S/MIME signing certificates for Outlook to prevent user impersonation and social-engineering-based phishing within your organization. Attestate that you are the originator of a document such as a PDF by using a Document Signing certificate issued by SCEPman.
For administrative access to critical infrastructure, only the strongest multi-factor authentication (MFA) schemes should be used. Certificate-based authentication is one of the few phishing-resistant mechanisms your administrators can use to logon to PAWs (e.g. using RDP) or to central administrative portals such as Azure Portal. SCEPman can issue those identity certificates directly to administrators' machine or to external smart card devices such as Yubikeys.
SCEPman provides an easy solution to equip your IoT devices with certificates. This enables your devices to authenticate to your telemetry backend securely. SCEPman provides the appropriate technology like ECC to ensure resource-efficient crypto algorithms on your devices as well as assembly line readiness.
SCEPman is an Azure App, that you run in your Azure tenant