.png){kind=logo}
A certificate usage alert fires each time a selected certificate is used in a signing operation. You can alert on successful signings (Allowed), blocked attempts (Denied), or both.
Usage alerts fire on every matching signing event. For certificates used in high-frequency automated pipelines, consider alerting only on Denied events to avoid inbox noise, or routing alerts to a shared mailbox or ticketing system rather than individual inboxes.
Create the Alert
-
In the Admin Web Console, navigate to Alerts and click Add new alert.
-
Select Certificate Usage and click Next.
-
Choose which certificates to monitor: All certificates, or select specific certificates or certificate groups. Click Next.
-
Select which event types to alert on:
|
Option |
When to use |
|---|---|
|
Allowed |
Alert on every successful signing. Use for high-value or sensitive certificates where you want visibility into all usage. |
|
Denied |
Alert on every blocked signing attempt. Use to detect misconfigured policies, unauthorized access attempts, or users hitting unexpected restrictions. |
|
Both |
Useful when first setting up monitoring and you want full visibility before deciding what level of noise is acceptable. |
-
Click Next.
-
Enter the email addresses of the recipients, one per line or comma-separated.
-
Enable Store Event Log to also write each alert to the Events log.
-
Click Apply to save the alert.
The alert appears in the Alerts list where it can be edited or deleted.