SP&T News

HID Global’s PKI-as-a-Service supports Microsoft Autoenrollment protocol

October 14, 2021  By  SP&T Staff

HID Global says it has simplified certificate automation for any Microsoft Active Directory-managed network devices with its PKI-as-a-Service (PKIaaS) platform. Customers can  issue, renew, replace or revoke certificates automatically with Microsoft Autoenrollment now that any device on the network can be connected with HID’s cloud-based PKIaaS via the Microsoft Autoenrollment connector.

HID Global’s cloud-based HID PKIaaS platform delivers a broad range of automation capabilities for managing privately issued and publicly trusted certificates, according to the company. HID says the platform eliminates manual processes for tracking, installing, and renewing certificates, and provides a cloud-based platform for all certificate needs.

HID Global says it has simplified how to integrate Microsoft Active Directory-managed network devices with its cloud-based PKIaaS to automate their certificate lifecycles. The PKIaaS platform’s out-of-the-box integration and Account Certificate Manager enables customers to centrally manage all device certificates across the entire enterprise, either manually or through Active Directory or a Mobile Device Management Platform, and whether they are issued automatically or manually.

In addition to Microsoft Autoenrollment, HID PKIaaS supports various pre-built integrations with standards-based certificate management protocols including Simple Certificate Enrollment Protocol (SCEP), Enrollment over Secure Transport (EST), and Automated Certificate Management Environment (ACME). It also provides RESTful Application Programming Interfaces (APIs) to integrate with any other third-party tools for certificate orchestration and automation.


HID PKIaaS’s Auto Enrollment connector acts as a proxy and connects with Microsoft Active Directory for any certificate request that makes outbound connection to HID’s PKIaaS platform for certificate issuance or updates. According to HID Global, there is no need to update any firewall configuration for inbound connection since it only makes an outbound connection at port 443. There is also no agent or other configuration change required at the individual device level, enabling customers to leverage existing technology deployments and infrastructure.

The HID PKIaaS offering with native support for the Microsoft Autoenrollment protocol is available as a subscription service with a guaranteed uptime Service Level Agreement (SLA).

Print this page


Stories continue below