Security

Certman MCP Server

Connect your account, then chat with AI to run tools.

Certman allows users to create and manage their own Certificate Authority, providing tools for internal security and certificate management. It is aimed at IT professionals and organizations seeking to enhance their security infrastructure.

Official server
Agent guide included
Start Chatting

Opens MCPBundles Studio with this server selected. After sign-in, chat and run tools from the same thread.

AI Skill
SKILL.md

Domain knowledge for Certman — workflow patterns, data models, and gotchas for your AI agent.

Certman

Certman is a certificate authority platform for managing internal PKI. This bundle provides tools to create and inspect CAs, issue certificates, revoke and renew them, and retrieve full certificate chains.

Entity Hierarchy

  • Certificate Authority (CA) is the trust anchor that signs certificates. CAs can be root or intermediate (linked via parentCaId).
  • Certificates are issued by a CA for a specific subject (common name + SANs). Each certificate has a lifecycle: active, expiring, or revoked.

Capabilities

CA management:

  • List all CAs you have read access to (filter by type or parent)
  • Get CA details including its certificate PEM
  • Retrieve the full certificate chain from a CA up to the root

Certificate lifecycle:

  • List certificates with filtering by CA, status, search term, creation date range, or expiration window
  • Get certificate details including PEM
  • Issue new certificates in managed mode (server-generated keys) or CSR mode (bring your own key)
  • Revoke certificates with a reason code
  • Renew certificates preserving subject, SANs, and CA

Workflows

Issue a certificate: List CAs to find the signing CA's ID. Call issue with the CA ID, common name, and optional SANs (DNS or IP). Choose managed mode for server-generated keys or csr mode with your own CSR PEM.

Audit expiring certificates: List certificates with expiringInDays filter to find certificates nearing expiration. Renew them before they expire.

Investigate a certificate: Get the certificate by ID to see its PEM and metadata. Get the CA chain to see the full trust path from issuer to root.

Revoke a compromised certificate: Call revoke with the certificate ID and reason code. The CA passphrase is required.

Gotchas

  • CA passphrase required: Issue, revoke, and renew operations require the CA passphrase. This must be provided per-call.
  • Managed vs CSR mode: Managed mode generates the private key server-side. CSR mode requires you to provide a PEM-encoded CSR.
  • Revoked CAs excluded: list_cas excludes revoked CAs by default.
  • Pagination: list_certificates supports page and pageSize for large certificate inventories.

Frequently Asked Questions

What is the Certman MCP server?

Certman allows users to create and manage their own Certificate Authority, providing tools for internal security and certificate management. It is aimed at IT professionals and organizations seeking to enhance their security infrastructure. It provides tools that AI agents can use through the Model Context Protocol (MCP).

How do I connect Certman to my AI agent?

Add the MCPBundles server URL to your MCP client configuration (Claude Desktop, Cursor, VS Code, etc.). The URL format is: https://mcp.mcpbundles.com/bundle/certman-mcp. Authentication is handled automatically.

What authentication does Certman require?

Certman uses One-click sign in or API Key. Certman requires credentials. Connect via MCPBundles and authentication is handled automatically.

Setup Instructions

Connect Certman to any MCP client in minutes

https://mcp.mcpbundles.com/bundle/certman-mcp

What is MCP?

Model Context Protocol lets AI tools call external capabilities securely through a single URL. This bundle groups tools behind an MCP endpoint that many clients can use.

Use this bundle in 3 steps

  1. Copy the MCP URL above
  2. Open your AI tool and add a new MCP/connector
  3. Paste the URL and follow any auth prompts

Claude Desktop Users

Skip the manual setup! Use the .mcpb file format for one-click installation. Check the Claude Desktop tab for setup instructions.

Pick your tool tab for exact steps

Select ChatGPT, Cursor, Claude Code, or another tab for copy-paste config.

Related MCP Servers

More security integrations you might like

ActionGate

ActionGate provides tools for assessing risk scores and simulating scenarios related to policy compl...

Security
Agent Safe

Agent Safe provides a suite of tools for assessing the safety of emails and URLs, ensuring secure co...

Security
Ax Platform

This server acts as a gateway for managing persistent identities and shared content within a collabo...

Security
Bright Security

Bright Security focuses on application security, providing tools to identify and mitigate vulnerabil...

Security
CISA KEV

The CISA Known Exploited Vulnerabilities (KEV) Catalog is the authoritative U.S. government list of ...

9 tools
Security
Civic

This server provides identity management, authorization, and audit trail capabilities, ensuring secu...

Security

Ready to use Certman?

Sign in to connect your credentials and start running tools from the chat.

Certman MCP Server & Skill