Web Server Integrations
Web Server Integrations
Section titled “Web Server Integrations”SSL-CLM automates certificate deployment to web servers through agents and direct configuration management.
Supported Web Servers
Section titled “Supported Web Servers”| Web Server | Deployment Method | Auto-Reload | Certificate Format |
|---|---|---|---|
| Apache HTTP Server | Agent (file deploy + reload) | ✓ | PEM |
| Nginx | Agent (file deploy + reload) | ✓ | PEM |
| Microsoft IIS | Agent (Windows cert store) | ✓ | PFX/PKCS#12 |
| HAProxy | Agent (file deploy + reload) | ✓ | PEM (combined) |
| F5 BIG-IP | API integration | ✓ | PEM/PKCS#12 |
Architecture
Section titled “Architecture”All web server integrations follow the same pattern:
SSL-CLM Platform││ (mTLS, Pull-Based Jobs)▼SSL-CLM Agent (on web server or jump host)││ (Local file operations + service reload)▼Web Server (Apache / Nginx / HAProxy)For IIS, the agent uses the Windows Certificate Store API. For F5, the agent uses the iControl REST API.
Common Configuration
Section titled “Common Configuration”All web server deployments require:
- SSL-CLM Agent installed on the target server (or a jump host with access)
- Certificate Store configured in SSL-CLM pointing to the server’s cert/key paths
- Post-deployment hook to reload the web server after certificate update
See individual web server guides for specific configuration.