Orchestration gateway release notes

This page provides release notes for the Sectigo Certificate Manager (SCM) Enterprise orchestration gateway.

The orchestration gateway documentation can be found in the following location:

Understanding orchestration gateways

Orchestration gateway v1.0

Introducing Sectigo Orchestration Gateway (SOG), a lightweight orchestration layer that extends SCM into operational environments. It provides a consistent way to execute certificate lifecycle tasks across hybrid and multi-cloud infrastructure, reducing reliance on custom scripts, manual steps, and environment-specific integrations.

Used alongside SCM, SOG orchestrates discovery, issuance, renewal, deployment, and revocation using standardized workflows. Its modular, extensible architecture is designed to support high certificate volumes, short renewal cycles, and evolving platform and cryptographic requirements, without adding significant operational overhead.

Key capabilities:

Orchestration of the full certificate lifecycle across different environments
Endpoint-based key generation with no shared or centralized key storage
One-to-many automation from a single gateway instance
Local and remote server/endpoint support using SSH, WinRM, and multiple authentication methods
Integration with local credential stores and enterprise vaults, including HashiCorp Vault, CyberArk Vault, and Delinea Secret Server
Support for Apache, Tomcat, Microsoft IIS, F5 BIG-IP, Nginx, and file-based endpoint types including PKCS#12, JKS, and PEM