Improving Workflow Automation for SSL Certificate Management
Question
An organization is using a PKI management server and a SOAR platform to manage the certificate lifecycle.
The SOAR platform queries a certificate management tool to check all endpoints for SSL certificates that have either expired or are nearing expiration.
Engineers are struggling to manage problematic certificates outside of PKI management since deploying certificates and tracking them requires searching server owners manually.
Which action will improve workflow automation?
Answers
Explanations
Click on the arrows to vote for the correct answer
A. B. C. D.C.
The scenario described in the question involves an organization using a Public Key Infrastructure (PKI) management server and a Security Orchestration, Automation, and Response (SOAR) platform to manage the certificate lifecycle. The SOAR platform queries a certificate management tool to check all endpoints for SSL certificates that have either expired or are nearing expiration. The engineers are struggling to manage problematic certificates outside of the PKI management since deploying certificates and tracking them requires searching server owners manually. The question asks which action will improve workflow automation.
Answer A proposes implementing a new workflow within SOAR to create tickets in the incident response system, assign problematic certificate update requests to server owners, and register change requests. This answer suggests creating a new process within the SOAR platform to automate the request and assignment of certificate update requests to server owners and registration of change requests. This solution would improve workflow automation by reducing the need for manual searching of server owners, and creating an automated process for updating problematic certificates.
Answer B proposes integrating a PKI solution within SOAR to create certificates within the SOAR engines to track, update, and monitor problematic certificates. This solution suggests integrating a PKI solution directly into the SOAR platform, allowing it to generate and manage certificates internally. This solution would improve workflow automation by centralizing the certificate management process within the SOAR platform, making it easier to track, update, and monitor problematic certificates.
Answer C suggests implementing a new workflow for SOAR to fetch a report of assets that are outside of the PKI zone, sort assets by certification management leads, and automate alerts that updates are needed. This solution proposes using the SOAR platform to fetch a report of assets that are outside of the PKI zone, sort them by certification management leads, and automate alerts for necessary updates. This solution would improve workflow automation by reducing the need for manual searching of server owners and allowing the SOAR platform to automatically alert the relevant certification management leads.
Answer D proposes integrating a SOAR solution with Active Directory to pull server owner details from the AD and send an automated email for problematic certificates requesting updates. This solution suggests integrating the SOAR platform with Active Directory to automatically pull server owner details and send automated emails requesting updates for problematic certificates. This solution would improve workflow automation by reducing the need for manual searching of server owners and creating an automated process for requesting updates.
In conclusion, while all of the answers provide potential solutions to improve workflow automation, Answer A is the best option as it provides a more comprehensive approach to the problem by creating a new workflow within SOAR to automate the request and assignment of certificate update requests to server owners and registration of change requests.
