Follow

Info: Understanding Certificate, Private Key and Certificate Chain Downloads

Info: 

Director has two possible events that are logged when a user downloads a certificate. These events have additional data to indicate whether the private key and certificate chain were also downloaded with the certificate. This information is useful for future audits to determine who downloaded a private key and when it occurred. The chain information can be used to determine if users are not downloading the chain along with the certificate.

Events:

Hexadecimal 
Event ID

Event Name

000C000A Admin UI - Certificate Downloaded
001B0003 Aperture - Certificate Downloaded

Admin UI - Certificate Downloaded

This event is logged for every certificate downloaded through the Admin UI.

Sample Event Description:
Certificate www.democertificate.com was downloaded by user AD+Venafi:DemoUser. Serial number: 191BB460000000000071. Private Keys Included: 1 Chain Included: 1 

Event Explanation
This event captures the certificate that was downloaded, its serial number, the user that downloaded it, whether the private key was included, and whether the certificate chain was included. 

$Event.Component$ contains the object name of the certificate

$Event.Text1$ contains the user that downloaded the certificate

$Event.Text2$ contains the serial number of the certificate

$Event.Value1$ Indicates whether the Private Key was downloaded. 0=False, 1=True

$Event.Value2$ indicates whether the chain was downloaded. 0=False, 1=True

Aperture - Certificate Downloaded

This event is logged for every certificate downloaded through Aperture.

Sample Event Description:
Certificate www.democertificate.com was downloaded by user AD+Venafi:DemoUser. Serial number: 191BB460000000000071. Private Keys Included: 1 Chain Included: 1 

Event Explanation
This event captures the certificate that was downloaded, its serial number, the user that downloaded it, whether the private key was included, and whether the certificate chain was included. 

$Event.Component$ contains the object name of the certificate

$Event.Text1$ contains the user that downloaded the certificate

$Event.Text2$ contains the serial number of the certificate

$Event.Value1$ Indicates whether the Private Key was downloaded. 0=False, 1=True

$Event.Value2$ indicates whether the chain was downloaded. 0=False, 1=True

 

Was this article helpful?
1 out of 1 found this helpful

Comments