Media content

Key Benefits

Key & Certificate Registry

A single registry: number, type, purpose, location, access control, owner (cabinet user), expiration date, and revocation status. Optional certificate/key hash. Parsing of uploaded certificates to populate fields. Types and statuses with country-specific translations.

Expiration Reminders

Enable reminders for a record; configure by days before expiration or on a specific date. Automatic scheduled email sending or manual reminder sending. Reminder status: pending, sent, canceled. History of attempts and sends.

Owner & Change History

The key/certificate owner is selected from cabinet users (considering the company). Change log: creation, editing (fields and old/new values), reminders (attempt, sent, error). Displays who and when performed the action.

Directories & Access

Key/certificate types and revocation statuses with country-specific translations. Module guide with translations and AI-powered translation support. Access by user groups and companies; view and edit permissions; option to show the link on the homepage.

Features & Capabilities

Key & Certificate Registry

  • List of records: number, company, type, purpose, location, owner, expiration date, status
  • Add, edit, and delete records
  • Record card: purpose, access control, notes, certificate/key hash
  • Owner — cabinet user (selection by company)
  • Expiration date and revocation status
  • Optional general information: organization, creation/update dates, version, responsible person

Types & Statuses

  • Key/certificate types: name, code, description with country-specific translations
  • Revocation statuses: active, revoked, etc. with translations
  • Colors for displaying type and status

Certificate Parsing

  • Upload a certificate file for automatic parsing
  • Populate fields based on data from the certificate
  • Store a certificate or key hash for identification

Reminders

  • Enable reminders for a record
  • Reminder type: by number of days before expiration or on a specific date
  • Automatic scheduled email sending (task scheduler)
  • Manual reminder sending from the interface
  • Status: pending, sent, canceled; history in the log

Change History

  • Action log: creation, editing (list of changed fields and values)
  • Reminder events: attempt, sent, error; manual sending
  • Timestamp and user for each event
  • View history in the record card

Guide & Access

  • Guide for the key and certificate module with basic content
  • Country-specific guide translations; AI-powered translation
  • Access by user groups and company list
  • Permissions: view and edit; option to show the link on the homepage

Use Cases

Key & Certificate Catalog

Maintain a register of your organization's cryptographic keys and certificates: SSL/TLS, signing, encryption, etc. For each record, specify the type, purpose, location, access control, owner (cabinet user), and expiration date. Classify by revocation status. Optionally store a hash and use certificate parsing for quick data entry.

Expiration Reminders

Enable reminders for records whose expiration is critical. Configure reminders by a number of days before expiration (e.g., 30 days) or on a specific date. The system will send scheduled emails. Send a reminder manually if needed. The change log shows all attempts and successful sends.

Owner & Audit Trail

The key or certificate owner is selected from cabinet users — linking the record to a responsible person in the organization. All changes to the record (creation, field edits, reminders) are logged with a timestamp and user. Edit details include a list of changed fields and old/new values for audit purposes.

Access Restriction by Company

Access to the key and certificate registry is configured by user groups. Each group can be assigned a list of companies — users only see and can edit records from those companies. Separate permissions are available for editing and for showing the module link on the homepage.

Localization of Directories and Guide

Key/certificate types and revocation statuses support country-specific translations — users see the names in their selected language. The module guide also has country-specific translations and optional AI-powered translation for populating content in new languages.

Technical Details

Architecture

Key and certificate module: directories for types and revocation statuses with country-specific translations. Record registry with company, number, type, purpose, location, owner (cabinet user), expiration date, revocation status. Optional one-to-one general information and certificate/key hash. Reminders: type (days before expiration or specific date), sending status; task scheduler for automatic distribution. Change history log. Certificate parsing (cryptography library). Guide with translations and translation API. Data in the project database; emails via mail configuration.

Security

Access to the registry is managed by user groups and a company list — users only see records from allowed companies. Separate view and edit permissions. A certificate/key hash is stored for identification without storing the actual key in plain text. CSRF protection and input validation. Change log for auditing.

Scalability

Registry and lists with pagination; queries use eager loading of related data. Reminders are executed on the project's task scheduler. Suitable for typical deployment.

Customization

Key/certificate types and revocation statuses with code, color, and country-specific translations. Reminders: two types (days before expiration or specific date); cancellation and re-creation. Guide with basic content and translations; optional AI-powered translation.

Frequently Asked Questions

What can be stored in the registry?

The registry stores metadata, not the actual keys or certificates: number, type, purpose, location, owner, access control, expiration date, revocation status. Optionally, a certificate or key hash is stored for identification. This allows you to track and control deadlines without storing confidential data in plain text.

How do reminders work?

For a record, you can enable reminders and choose the type: "N days before expiration" or "on a specific date." The system checks reminders on a schedule (task scheduler) and sends emails. Manual reminder sending from the record card is also available. Reminder status: pending, sent, canceled. When a new reminder is created, the previous active one is canceled.

Who is the key/certificate owner?

The owner is selected from cabinet users (considering the company). This links the record to a responsible person in the organization. The owner's data (name, department/position, contacts) is synchronized with the cabinet user's profile.

What is certificate parsing?

You can upload a certificate file — the system parses it and populates available fields (e.g., dates, organization) for quick record creation. It works with certificate formats using a cryptography library. Optionally, a hash is stored for future identification.

Is change history preserved?

Yes. A log is kept for each record: creation, editing (with a list of changed fields and old/new values), reminder events (attempt, sent, error, manual sending). Each entry includes a timestamp and user. The history is available in the record card.

How is access restricted by company?

Access is configured by user groups. Each group is assigned a list of companies — users can only see and edit key/certificate records from those companies. Separate permissions are set for editing and for showing the module link on the homepage.

What is a revocation status?

The revocation status indicates whether a key or certificate is valid (e.g., active) or revoked. Values are taken from a directory with country-specific translations. This helps track the current state and filter records in the list.

Related Modules

Asset Management

Risk Assessment & Management

Standards & Compliance

Ready to Get Started?

Explore this module and enhance your organization's security posture