Managed Services PKI

Frequently Asked Questions

  1. My organization wants to deploy digital certificates to secure remote access, desktops and email applications. How can we obtain certificates?
  2. When should an organization consider engaging a managed PKI service provider?
  3. Can a managed PKI service be migrated to an internally operated security infrastructure?
  4. Do I still have control over policy if I select a managed PKI service?
  5. Can Entrust security solutions be used with a managed PKI service or an internally operated CA?
  6. Is Entrust's managed PKI service available for U.S. Federal government customers?
  7. Can Entrust GetAccess™ products be used in conjunction with my managed PKI service?
  8. Is the enrollment process manual or automated?
  9. Will the enrollment process be the same in a distributed environment?
  1. My organization wants to deploy digital certificates to secure remote access, desktops and email applications. How can we obtain certificates? (top)

    The two main approaches for delivering digital certificates for securing a broad range of commerical off-the-shelf applications are self-hosted and service provider-hosted CAs.

  2. When should an organization consider engaging a managed PKI service provider? ( (top)

    Generally, a managed service arrangement is suitable for organizations with small IT departments, limited PKI technical expertise and/or security budgets, have time constraints and desire rapid time-to-market.

  3. Can a managed PKI service be migrated to an internally operated security infrastructure? (top)

    Yes. Entrust-based managed PKI services and an internally operated infrastructure use the same security infrastructure software, which means organizations are not locked in to a service model.

  4. Do I still have control over policy if I select a managed PKI service? (top)

    Managed PKI services customers may customize the security policy for the initial and ongoing definition of various security parameters (e.g., key length, certificate lifetime, expiry, revocation and recovery procedures).

  5. Can Entrust security solutions be used with a managed PKI service or an internally operated CA? (top)

    Entrust enhanced security solutions may be deployed using either an internally operated security infrastructure or as a managed PKI service.

  6. Is Entrust's managed PKI service available for U.S. Federal government customers? (top)

    Yes. Entrust Managed Services PKI has been awarded certification as a Shared Service Provider (SSP) under the U.S. government's General Services Administration list of Approved Shared Service Providers. It meets U.S. Federal Common Policy and standards requirements while providing the same high level of technology and services that have positioned Entrust as a leader in PKI.

  7. Can Entrust GetAccess™ products be used in conjunction with my managed PKI service? (top)

    Entrust Authority™ public key infrastructure (PKI) products for identification and privacy can be combined with Entrust GetAccess products for entitlements and access control to deliver enhanced security for Internet-enabled applications.

  8. Is the enrollment process manual or automated? (top)

    Entrust offers a broad range of enrollment and administration options from automated enrollment (with or without administrator approval) to Web-based self-service enrollment and administration, right through to face-to-face mechanisms.

  9. Will the enrollment process be the same in a distributed environment? (top)

    Yes. You can establish administrators — also known as Local Registration Authorities — where you need them around the globe to perform the subscriber enrollment.