In Control Compliance Suite, a unique certificate is created for each installable component on each host. Certificates secure the environment by using a unique identifier for communications between Control Compliance Suite core components. If any host or certificate becomes compromised, the compromised single certificate can be revoked using the Certificate Management console. When the certificate is revoked, only the compromised component is affected. The certificate of the single component must be regenerated and registered with the Control Compliance Suite system, and the component is fully functional again. If a host or certificate is compromised no other components are affected.
More Information
About the Certificate Management console
About managing certificates using the command line
Using the Certificate Management console