Entrust Authority PKI

An Integrated Security Infrastructure for Encryption, Digital Signatures & Certificate Authentication

A PKI establishes and maintains a trustworthy networking environment by providing key and certificate management services that enable encryption and digital signature capabilities across applications — all in a manner that is transparent and easy to use.

Entrust’s first public key infrastructure — the world’s first commercially available PKI — was released in 1994. Now in its eighth edition, the Entrust Authority public key infrastructure product portfolio is the industry’s most relied-upon PKI solution.

By managing the full lifecycles of digital certificate-based identities, Entrust Authority PKI enables encryption, digital signature and certificate authentication capabilities to be consistently and transparently applied across a broad range of applications and platforms.



As an organization’s in-house CA, Entrust Authority Security Manager enables the use of digital signatures, digital receipts, certificate validation, encryption and permissions management services across a wide variety of enterprise applications and solutions.

  • Securely store CA’s private key
  • Issue digital certificates for users, applications and devices
  • Leverage certificate authentication to verify the identity of a device or user
  • Publish certificate revocation lists (CRLs) to verify a user or application’s certificate is still trusted by the issuing CA
  • Maintain an auditable database of users’ private key histories for recovery purposes

Add more security management capabilities — including self-registration, self-recovery or inventory of digital identities, secure roaming, enrollment services, PIN authentication — using the platform’s optional PKI components or other complementary solutions.


Whether your organization requires an in-house PKI or the convenience of a hosted PKI service, Entrust provides a myriad of capabilities to help meet the security challenges of your organization.

Global PKI Leaders
Entrust PKI solutions are deployed in nearly 800 organizations worldwide. Trusted by leading governments, elite financial institutions and top organizations, our PKI solution is unmatched in manageability, versatility and real-world success.

PKI as a Service
Prefer PKI experts facilitate the set up and on-going operation of the CA infrastructure? Look to Entrust Managed Services PKI as a trusted hosted CA deployment.

Certificate Discovery
A complement to any PKI deployment, Entrust Discovery finds, inventories and manages digital certificates across diverse systems to prevent outages, data breach and non-compliance.

Protecting Citizens
While our PKI is certainly proven in enterprise environments, the technology is also used to secure many of today’s largest ePassport projects and citizen ID initiatives.

The comprehensive system required to provide public-key encryption and digital signature services is known as a public key infrastructure, or PKI. Its purpose is to manage keys and certificates, helping an organization establish and maintain a trustworthy networking environment. A PKI enables the use of encryption and digital signature services across a wide variety of applications.



Entrust Authority™ Administration Services
Administration Services is a web-based application that enables delegated and distributed administration of the Entrust Authority Security Manager PKI with end-to-end security by enforcing all administrative transactions to be digitally signed.Entrust Authority™ Auto-enrollment Server
Auto-enrollment Server is an optional add-on to Entrust Authority Security Manager that, together with Entrust Entelligence™ Security Provider for Windows®, introduces the capability to automatically enroll users and computers with the public-key infrastructure for managed certificates when using a Windows® platform.Entrust Authority™ Roaming Server
Roaming Server allows users to log in and have secure access to sensitive information – from any location – without having to carry the PKI digital IDs necessary to establish a secure connection.Entrust Authority Security Manager Proxy
Security Manager Proxy allows customers to communicate with a PKI Certification Authority (CA) over the Internet, without making changes to existing firewall settings.Entrust Authority™ Enrollment Server for Web
This server works with Entrust Authority Security Manager to issue public-key infrastructure digital certificates to applications and devices.

Entrust Authority™ Enrollment Server for VPN
This server works with Entrust Authority Security Manager to issue digital certificates to VPN gateways, remote access clients and routers from a wide range of industry leading vendors.


  • Entrust Managed Services PKI
    Leverage the convenience and security of a full PKI without an expensive upfront investment, in-house experts or need to build secure facilities.
  • Entrust IdentityGuard
    Entrust’s flagship authentication solution, Entrust IdentityGuard leads the industry as one of the most robust authentication and identity-assurance platforms. The platform may even use a PKI’s digital certificates for strong authentication as part of a true identity-based security environment.
  • Entrust ePassport Solutions
    Proven with more real-world deployments than any other vendor, Entrust is the ePassport security leader for Basic Access Control (BAC) and Extended Access Control (EAC) environments.
  • Entrust Citizen ID Solutions
    Entrust offers a flexible set of authentication solutions designed to meet a variety of citizen eID, national ID or civil authentication requirements.
  • Entrust Discovery
    Cloud-based certificate discovery service finds, inventories and manages digital certificates across diverse systems to prevent outages, data breach and non-compliance.