Infrastructure

DigiCert

Connect DigiCert CertCentral to Ploy to bring the people in your CertCentral account into Ploy. Ploy reads your CertCentral users and, for each one, their email and name, whether their account is active, the role they hold (such as Administrator or Manager), and when they last signed in — giving you visibility into who can manage your organization's certificates. Ploy only reads data from DigiCert; it never makes changes to your account.

Before you begin

You need a DigiCert CertCentral account and must be an account administrator — only admins can create API keys.

DigiCert enforces two-factor authentication for all CertCentral accounts, but it does not expose per-user 2FA status through its API, so Ploy cannot report whether individual users have 2FA enabled.

Create an API key

  1. Sign in to CertCentral as an administrator.

  2. In the menu, go to Automation → API Keys.

  3. Click Add API Key.

  4. Enter a description, such as "Ploy".

  5. Link the key to a service user (an API-only user), so it isn't tied to an individual person's login.

  6. For permissions, choose View Only (limits the key to read-only requests) or User Management. Ploy only needs to read users, so either works. Don't use an Orders-only key — it can't read users and the connection test will fail.

  7. Generate the key and copy it immediately — DigiCert shows it only once and you can't retrieve it later.

Connect DigiCert in Ploy

  1. Open the DigiCert integration in Ploy.

  2. In API Key, paste the key you copied.

  3. Click Test to check the connection. Ploy verifies the key against your CertCentral account.

  4. When the test succeeds, click Save.

What each field is for

  • API Key: lets Ploy authenticate to the DigiCert Services API for this connection. It is stored encrypted and is not shown again after you save.

Troubleshooting

  • The connection test fails with an authentication error. Make sure the key was copied in full with no extra spaces, and that it is still active in CertCentral under Automation → API Keys.

  • The test says the key is not allowed to read users. Its restriction is too narrow — create a new key with the View Only or User Management restriction.

  • You cannot create an API key. Your CertCentral role does not allow it; ask an account administrator to create one for you.

Was this helpful?