December 6, 2025 9:00AM - 11:00AM UTC
Certificate Lifecycle Management Platforms
SCM (hard.cert-manager.com), SCM (eu.cert-manager.com)
The SCM 25.11 release includes the following enhancements and fixes:
- New certificate profile migration feature that allows updating all enrollment endpoints to use the selected replacement certificate profile. (SCM-12359)
- Certificate profiles can now be ordered on the Web Enrollment forms. (SCM-11528)
- The CA Connector can now be used to perform discovery scans of MS CAs. (SCM-10515)
- Customers can now manage their own SCEP RA certificates. (SCM-6900)
- New SCEP RA certificate expiry notification. (SCMSERVICE-1466)
- Added notificationDaysInAdvance variable to SSL expiration notification templates. (SCM-12847)
- New Usage section in the certificate viewer to see current certificates individual contribution to usage. (SCM-13013)
- New SAN Count and Licensed SAN columns in the SSL certificate table to show the certificate's total SANs and how many additional SANs above the free are included with the certificate product. (SCM-12830)
- New SAN Count and Licensed SAN columns in the SSL report showing certificate's total SANs and how many additional SANs above the free are included with the certificate product. (SCMSERVICE-1462)
- The DNS TXT DCV progress dialog will now show the token expiration timestamp and if expired, provide a way to fetch a new token. (SCM-12939)
- New admin privileges to control visibility and management of certificate profiles. (SCM-11772/SCM-11773)
- New admin privileges to control visibility and management of custom fields. (SCM-11781/SCM-11782)
- New admin privileges to control import of certificates. (SCM-11807)
- Improved audits for admin privilege changes. (SCM-11779)
- Manually renewing a certificate with auto-renewal enabled results in a new certificate without auto-renewal enabled. (SCM-13092)
- Cleanup of old unregistered Network Agents could incorrectly delete an offline agent. (SCM-13021)
- UI glitch when viewing a large number of departments in the Organizations tree. (SCM-12844)
- Cancelled domain delegation could result in UI still showing delegation pending, but updating the delegations was blocked since the Save button didn't appear. (SCM-13048)
- Creation of a certificate profile for MS CA could fail with the error "Unable to get the available configuration from the CA backend for 'MS Template' attribute." (SCM-13014)
- Editing a certificate's mandatory custom field could result in an internal error. (SCM-12801)
- When "MRAO must approve domain delegations" is enabled, the notification to the MRAO might not be sent if the RAO approved the department's domain request in a specific order (organization before department). (SCM-11591)
