Visibility
Discover certificates across clusters
Build a central inventory of Kubernetes certificates across self-managed and cloud-provider-managed environments.
Certificate lifecycle management for Kubernetes and container workloads
AVX ONE CLM for Kubernetes centralizes discovery, automation, policy control, and governance for TLS certificates used by Kubernetes infrastructure, ingress traffic, service mesh, and pod-to-pod mTLS.
iTrust helps platform, DevOps, and security teams apply consistent certificate policy across clusters while preserving the speed expected from cloud-native delivery.
Automation
Automate issuance and renewal
Use certificate orchestration to reduce manual work and avoid service disruption from expired workload or ingress certificates.
Control
Enforce trusted PKI policies
Apply compliant CAs, crypto standards, and approval models consistently across containerized workloads.
Common use cases
- Ingress TLS
- Manage public and private TLS certificates used for north-south traffic into Kubernetes-hosted applications.
- Service mesh mTLS
- Support certificate governance for east-west traffic between services, pods, and workloads.
- Cluster infrastructure
- Improve visibility for certificates used by Kubernetes control plane and infrastructure components.
- DevOps enablement
- Give teams self-service certificate workflows without bypassing security and compliance controls.
Resources
Datasheets and technical resources
Official AppViewX resources for Kubernetes certificate lifecycle planning.
Datasheet
AVX ONE CLM for Kubernetes Datasheet
Overview of certificate lifecycle management for Kubernetes infrastructure, ingress, service mesh, and containerized workloads.
View Datasheet
Official AppViewX PDF
Solution Brief
AVX ONE CLM for Kubernetes Solution Brief
Brief on automated discovery, issuance, renewal, revocation, and policy enforcement for Kubernetes certificates.
View Brief
Official AppViewX PDF