Run Certificate Discovery via certificate file import

  • Release version: Australia
  • Updated March 12, 2026
  • 1 minute to read

    • In Certificate Inventory and Management, you can discover certificates by importing certificate files into the system using pattern-based Discovery.

    Before you begin

    • Ensure that TLS_keepOriginalCertificate is set to False.
    • Ensure the certificate is in one of the following formats: .cert, .pem, .txt, .der, and .cer.
    • Role required: discovery_admin or admin

    About this task

    The import certificates are discovered using the Import SSL Certificate pattern, relying on the following parameters:
    • Server: The host name or IP address where the certificates are hosted. If importing from the MID Server, specify localhost and leave temp_certificate_folder empty.
    • server_certificates_folder: The folder path on the server containing the certificates.
    • TLS_keepOriginalCertificate parameter: Set to false to avoid potential out-of-memory issues due to increased payload size.
    • temp_certificates_folder: Temporary folder on the MID Server where the files are copied.

    Procedure

    1. Create a Discovery schedule with the following fields.
      For more information on setting up your Discovery schedules, see Schedule a horizontal discovery.
      1. Select Discovery: Import Certificates
      2. Select Certificate Discovery Type: Import Certificates.
      3. Select MID Server selection method: Specific MID Server.
      4. Select MID Server: Select the preferred MID Server.
      5. Add the credentials for the Windows or Linux host machine where the certificates are located.
      6. Fill out any other necessary fields.
      7. Select Save.
    2. To add the Import SSL Certificate pattern, from the Serverless Execution pattern tab, select New.

    Result

    When your Discovery schedule runs, it then automatically scans your files.