Skip to main content
Version: Axidian CertiFlow 7.2

Components

Axidian CertiFlow consists of server and client components.

Server components

The core of the system is Axidian CertiFlow Server. The server components include:

  • Management Console – an administrator console.
  • Self-Service – a user's personal account.
  • Remote Self-Service – a remote service for users outside the domain.
  • API – an API service for cards lifecycle managment and integration with third-party systems.
  • CredProvAPI – a service for online unlocking and disabling cards.
  • Card Monitor – a service for monitoring card status (installed with the server).
  • Axidian CertiFlow Agent (client agent) – a service for registering client agents and for cards remote management.
  • Axidian CertiFlow Configuration Wizard – a web console for configuring Axidian CertoFlow operations settings.
  • OpenID Connect Server – a server for user authentication in web applications via the OpenID Connect protocol.
  • MSCA Proxy – an additional component for configuring integration with Microsoft Enterprise CA instances outside the domain where Axidian CertiFlow is deployed.
  • Event Log Proxy – an additional component for recording events from multiple Axidian CertiFlow servers into Windows event log.
  • Axidian Log Server – an additional component for recording events from multiple Axidian CertiFlow servers into Windows event log, Microsoft SQL or PostgreSQL databases, and SysLog.
tip

The OpenID Connect Server, MSCA Proxy, Event Log Proxy, and Axidian Log Server web applications are mandatory for Linux-based installations and additional for Windows-based installations.

Auxiliary tools

  • Storage.sql – a script for populating Microsoft SQL database.
  • Storage-Postgre.sql – a script for populating PostgreSQL database.
  • Certiflow.CertEnroll.MsCA.exe – a tool for issuing the Enrollment Agent certificate for a Microsoft Enterprise CA service account.
  • Certiflow.Agent.Cert.Generator – a tool for creating client agent certificates.
  • Certiflow.Config.DataProtector – a tool for encrypting the Axidian CertiFlow services configuration files.

Client components

Axidian CertiFlow Middleware – a component providing a single interface for managing cards connected to a workstation.

Axidian CertiFlow Client Tools

  • Credential Provider – a component for online and offline unlocking of cards used for Windows authentication.
  • Axidian CertiFlow Unblock – a component for unlocking cards in a user session.

Axidian CertiFlow Agent – a client agent for remote blocking, resetting the user PIN, updating the card content, clearing or initializing the card when it is revoked, and changing the administrator PIN.