Auto Renewal of Client Certificates
Central management provides an option to auto-renew the client certificates before their expiry. There is a Certificate Auto Renewal toggle under the CSR parameters on the Application Data Protection tile that enables the auto-renew functionality. If the Certificate Auto Renewal toggle is turned on, the clients are allowed to auto-renew the certificate. The client will call the
/v1/data-protection/self/clients/renew API and send the certificate renewal request to the CipherTrust Manager. In the response, the CipherTrust Manager will send renewed certificate to the client.
If the Certificate Auto Renewal toggle is off, the client will have to manually renew the certificate. Refer to respective client documentation for details.