Datasheet

Keyfactor +
Fortanix DSM

End-to-end certificate lifecycle automation backed by secure key orchestration with Fortanix Data Security Manager (DSM).

Download Datasheet

Request a Demo

hero image

As organizations move to the cloud, the use of public key infrastructure (PKI) and certificates to securely authenticate machines and workloads has grown dramatically. To keep pace, security teams need a way to effectively manage all of these machine identities across their hybrid and multi-cloud infrastructure, all while ensuring that sensitive private keys remain protected.

overview image

Solution Overview

Keyfactor and Fortanix combine the benefits of certificate lifecycle automation with robust key protection in Fortanix Data Security Manager (DSM). Keyfactor provides full discovery, policy enforcement, and automation for the lifecycle of certificates, and Fortanix DSM ensures secure generation and storage of private keys associated with those certificates. The combined solution gives teams the flexibility to manage millions of keys and certificates, whether in the cloud, on-premise or embedded in IoT devices.

Visibility
Gain Visibility and Control

Manage and enforce policy for every certificate issued from your public, private, and cloud-based CAs — all from a single intuitive interface.

automate
Simplify Operations

Fully automate certificate renewal and provisioning across all devices and workloads in hybrid and multi-cloud environments.

key
Protect Private Keys

Generate, store, and manage hundreds of millions of private keys using the FIPS 140-2 Level 3 certified Fortanix HSM on-prem or in the cloud.

How it Works

Keyfactor Command integrates directly with any public, private, and cloud-based CA to support self-service enrollment and automated provisioning of certificates to workloads. The platform can leverage Fortanix DSM to protect the private key associated with certificates and ensure that crypto-operations are completely secured by Intel SGX.

keyfactor diagram

Key Features

Visibility
Visibility and Control

Centralized console for discovery, management, and self-service enrollment for certificates in multi-vendor environments.

automate
Lifecycle Automation

Powerful and highly flexible Orchestrators provide discovery and automation for servers, load balancers, cloud workloads, and more

key
Private Key Protection

Only authorized users can access keys protected with multiple layers of defense, including Fortanix Runtime Encryption and Intel SGX.

api
DevOps-Ready

Extensible RESTful APIs and plugins make it easy for developers to integrate security into applications.

scale
Distributed Architecture

Highly scalable, distributed architecture supports millions of keys and certificates per customer.

code
Flexible Deployment

Keyfactor and Fortanix offer the flexibility to deploy as a service (SaaS), on-premise, or in a hybrid architecture.

Ready to test Fortanix Runtime Encryption?
request a demo

Platform

Fortanix Armor

Armet AI

NEW

Key Insight

Data Security Manager

Confidential Computing Manager

Open Source Platform

Enclave Development Platform®

Solutions

Use Cases

Legacy to Cloud Infrastructure Migration

Regulatory Compliance

Post-Quantum Readiness

Secure, Data-Driven Innovation

Company

About Us

Partners

Careers

Confidential Computing

University

Blog

FAQ

Contact Us

Awards

Events

Webinars

Press

News

Services

Media Kit

Newsletters

Customers

Resources

Support

Fortanix-logo

4.6

star-ratingsgartner-logo

As of August 2025

SOC-2 Type-2ISO 27001FIPSGartner LogoPCI DSS Compliant

US

Europe

India

Singapore

3910 Freedom Circle, Suite 104,
Santa Clara CA 95054

+1 408-214 - 4760|info@fortanix.com

High Tech Campus 5,
5656 AE Eindhoven, The Netherlands

+31850608282

UrbanVault 460,First Floor,C S TOWERS,17th Cross Rd, 4th Sector,HSR Layout, Bengaluru,Karnataka 560102

+91 080-41749241

T30 Cecil St. #19-08 Prudential Tower,Singapore 049712