Keyfactor Command Reviews & Product Details

Keyfactor Command is a certificate lifecycle management solution that enables organizations to discover, control, and automate the lifecycle of keys and digital certificates across their IT landscape. It's the only solution that can be deployed on-premise, in the cloud, in a hybrid model, or in combination with a fully hosted PKI as a Service. The solution is also available in the Azure and AWS Marketplaces.

Product Website

Seller

Keyfactor

Discussions

Keyfactor Command Community

Overview by

Ryan Sanders (Senior Product Marketing Manager at Keyfactor)

Value at a Glance

Averages based on real user reviews.

Time to Implement

6 months

View More Pricing Information

Keyfactor Command Integrations

(8)

Verified by Keyfactor Command

Keyfactor Command Media

Official Downloads

(3)

edit

Buyer's Guide for Certificate Lifecycle Management

G2 reviews are authentic and verified.

Here's how.

Verified User in Food Production

Enterprise (> 1000 emp.)

9/8/2022

"Keyfactor has lot of services and functionalities related to offering PKI services."

5/5

What do you like best about Keyfactor Command?

Keyfactor command server gives a centralized view of all the certificates being used across the organization and makes it easier to enroll, manage and review them all at one place. Review collected by and hosted on G2.com.

What do you dislike about Keyfactor Command?

Sometimes it takes weeks to get an issue resolved if a support case is raised. This is not the case with the high priority cases though, which gets acknowledged and resolved on time. Review collected by and hosted on G2.com.

Verified User in Government Administration

Mid-Market (51-1000 emp.)

7/22/2021

Business partner of the seller or seller's competitor, not included in G2 scores.

"Keyfactor support review"

5/5

What do you like best about Keyfactor Command?

Key factor management has been very supportive of my needs - in recent tickets we have found that Ethan Hildum and Jimmy Grotemeyer have been instrumental in helping with ticket assistance Review collected by and hosted on G2.com.

What do you dislike about Keyfactor Command?

I would like to see some insights to the Keyfactor platform on the website as it pertains to training- if there are video's that we could sign up for to subscribe to that we could share with our team that would be helpful Review collected by and hosted on G2.com.

Recommendations to others considering Keyfactor Command:

Please add training to your web portal Review collected by and hosted on G2.com.

What problems is Keyfactor Command solving and how is that benefiting you?

Account issues with individual users - our end users often complain about when certificates expire it would be nice to give each one the access to set their own notification so they would be responsible to act upon this knowledge Review collected by and hosted on G2.com.

Verified User in Financial Services

Mid-Market (51-1000 emp.)

12/10/2021

"If you are in the market for a SSL management solution, Keyfactor is the way to go."

5/5

What do you like best about Keyfactor Command?

When our company was looking for an SSL management solution, I evaluated many different solutions, and Keyfactor was by far the best solution we looked at.

One of the reasons I like Keyfactor is the very user-friendly and clean user interface. Most other applications were very complicated, not easy to navigate, and not very logical. Another plus is right-click functionality within the web portal--I can perform tasks on a highlighted cert using a menu that pops up when right-clicked to make tasks a little easier.

Automation is another great feature of Keyfactor. When renewing IIS certs, the orchestrators create the new SSL cert using the same existing SSL thumbprint on the current certificate, which means when the cert is updated in IIS, no IIS services must be restarted for the renewed certificate to take effect. Another great feature of the application is the workflows that can automatically launch PowerShell scripts to give us more automation/scripting options. This is huge since we can do so much with PowerShell.

Organizing our SSL certs is very easy to do within the application. This can be done by using queries as simple or complex as we like. Being able to add our own metadata to the certificates in the database is another helpful feature. This allows us to associate helpful information to a cert. This metadata can also be used in the automation workflows in Keyfactor.

Keyfactor can also be integrated with Spunk and ServiceNow, which many of the other SSL management applications I looked at could not do.

Lastly, it is always very easy to contact Keyfactor support, and I find their customer service is top-notch. I believe the fact that their technical support is onshore has a lot to do with that.

I'm just scratching the surface of what Keyfactor can do, but if you are in the market for an SSL management solution, I highly recommend Keyfactor. Review collected by and hosted on G2.com.

What do you dislike about Keyfactor Command?

The installation and configuration of the product takes some time and requires a series of meetings with Keyfactor to implement. Review collected by and hosted on G2.com.

Krista B.

Senior Citrix Engineer Network/Virtualization

Enterprise (> 1000 emp.)

8/9/2021

"KeyFactor helps to make PKI Administration quick and easy!"

4.5/5

What do you like best about Keyfactor Command?

I can view all my CAs from a single screen. Key Factor allows me to issue and revoke certificates quickly. In addition, I can search certificates and view all locations in the environment it is in use. Review collected by and hosted on G2.com.

What do you dislike about Keyfactor Command?

KeyFactor takes a bit of work to stand up, and relies on agents deployed throughout the network to collect SSL inventory. Scans are manually scheduled when convenient. The information provided and early warnings of certificate expirations make it well worth the effort! Review collected by and hosted on G2.com.

Recommendations to others considering Keyfactor Command:

We compared three tools and ran POCs of two before deciding on KeyFactor. KeyFactor was an easy choice based on cost, functionality, and ease of administration. Review collected by and hosted on G2.com.

What problems is Keyfactor Command solving and how is that benefiting you?

As a single administrator over multiple PKI environments, KeyFactor is a great timesaver! I can monitor my CAs, manage CRL and OCSP status and track certificates issued from any PKI in the environment from a single tool. By creating custom reports, I can alert IT admins when their certs are expiring and renew expiring certs with a single click. We purchased KeyFactor to cut down on the number of certificate-related outages, but there are many additional benefits to having it in place. Review collected by and hosted on G2.com.

Verified User in Information Technology and Services

Enterprise (> 1000 emp.)

12/20/2021

"Keyfactor has been an excellent partner for handling our PKI needs."

5/5

What do you like best about Keyfactor Command?

Moving our PKI infrastructure to Keyfactor has allowed us to focus on our main business goals while leaving Keyfactor to maintain and manage our PKI needs. Review collected by and hosted on G2.com.

What do you dislike about Keyfactor Command?

The complexity of synchronizing our on-premise configuration can be a challenge, though Keyfactor's support staff is exceedingly responsive and helpful in resolving any issues we experience. Review collected by and hosted on G2.com.

Frederick L.

Software Developer

Enterprise (> 1000 emp.)

7/29/2021

"Keyfactor Can Modernize and Mature your Public Key Infrastructure"

5/5

What do you like best about Keyfactor Command?

Keyfactor's technical features and their support Review collected by and hosted on G2.com.

What do you dislike about Keyfactor Command?

Absolutely nothing. Keyfactor has a fully realized suite of tools and functionality. We are using maybe 10% of what they have to offer. Review collected by and hosted on G2.com.

What problems is Keyfactor Command solving and how is that benefiting you?

With Keyfactor, we have solved device certificate management for non-domain joined devices. We have also created a full-stack application using Keyfactor's APIs that allow us to provision digital signature certificates to end-users in a highly regulated and qualified environment. We are currently working on an initiative to integrate Keyfactor with our ITSM processes, and we are confident that we will be able to solve a significant, human error-prone process by doing so. Review collected by and hosted on G2.com.

Verified User in Hospital & Health Care

Enterprise (> 1000 emp.)

10/22/2021

"Steroids for the abandoned MS child ADCS."

5/5

What do you like best about Keyfactor Command?

It adds many functionalities to your already running PKI environment like alerting for certs expiration, external certs management, API interface, reporting, a user-friendly certificate request site, and much more. Review collected by and hosted on G2.com.

What do you dislike about Keyfactor Command?

A robust knowledge base is missing in my opinion. Review collected by and hosted on G2.com.

Verified User in Food & Beverages

Enterprise (> 1000 emp.)

10/13/2021

"Keyfactor Command to replace Microsoft ADCS Two-Tier PKI"

4/5

What do you like best about Keyfactor Command?

Automation workflows and capabilities: standard Microsoft PKI services do not provide means to automate certificate deployment beyond auto-enrolment, which only works on domain-joined devices. Besides this critical point, Keyfactor solved another pressing issue we had which is the notification of expired certificates to solution owners. Review collected by and hosted on G2.com.

What do you dislike about Keyfactor Command?

The web interface can be improved to make it more user friendly Review collected by and hosted on G2.com.

What problems is Keyfactor Command solving and how is that benefiting you?

By using Keyfactor Command we do not rely any longer on infrastructure we had to manage in-house (several VMs, patching, management, and administration), and we can focus on running a PKI.

We have a complete picture of all our certificates through scanning our infrastructure and importing existing certificates from the existing environment. We can then take several actions on these certificates via Orchestrators servers. Review collected by and hosted on G2.com.

Madhav K.

Solution Delivery Analyst

Enterprise (> 1000 emp.)

5/4/2021

"Automates everything certificate!"

4.5/5

What do you like best about Keyfactor Command?

Keyfactor's automation is the best part about it. The second best thing I love is the reporting capabilities. Review collected by and hosted on G2.com.

What do you dislike about Keyfactor Command?

The UI might be a little on the simple side; it can use a UX step up Review collected by and hosted on G2.com.

Recommendations to others considering Keyfactor Command:

It's an excellent tool for the automation of certificates! No reason to wait before using it. Make use of the awesome functionality of Keyfactor. It is the market leader. No competitor has the same set of capabilities that Keyfactor is offering yet. The pricing model of Keyfactor makes it a very smart choice for every big or small team that manages PKI in the organization. Review collected by and hosted on G2.com.

What problems is Keyfactor Command solving and how is that benefiting you?

The previous certificate management was totally managed manually. We switched to Keyfactor to leverage it's automation, certificate discovery capabilities, reporting features and so much more. It saved literally thousands of man-hours and made our team more functional towards other tasks. We are able to enable timely renewal of certificates because of the expiry alerts from Keyfactor that can be configured to come in 90 days before expiry, 60 days before expiry, 45 days before expiry, 30 days before expiry, 20 days before expiry, 15 days before expiry, 7 days before expiry, 3 days before expiry, and finally one day before expiry. This really helps avoid certificate expirations.

The other thing Keyfactor helps a lot is in reporting, there are so many parameters in the reports. The collections feature enables us to make different sets of certificates based on an elaborate set of filters like Issuer, Issued CN, Date, etc. Certificate collections let you stay on top of your certificate game.

The Keyfactor dashboard gives you a chart with information like the number of certificates nearing expiration in various timeframes. the number of certificates that were rejected, etc. Review collected by and hosted on G2.com.

Ernesto T.

Sr. Authentication and identity services Analyst

Enterprise (> 1000 emp.)

7/21/2021

"KeyFactor command"

4.5/5

What do you like best about Keyfactor Command?

KeyFactor Command is a single-stop shop to manage CAs in multiple environments. The APIs allows you to integrate to ticketing systems to be able to provide self-service to our customers Review collected by and hosted on G2.com.

What do you dislike about Keyfactor Command?

sample scripts developed mainly in PowerShell, I will love to see more development on python Review collected by and hosted on G2.com.