Administration Overview
Administration covers the organization-level surface of CertAutoPilot — everything under Settings that is not project-scoped:
- General settings — renewal thresholds, distribution limits, DNS propagation behaviour, approval requirements, UI defaults.
- Organizations & projects — tenancy structure and project isolation.
- Users, LDAP, OTP policy — see Security & Access.
- License — activation (online/offline) and usage against plan limits.
- Syslog — forwarding audit events to a SIEM.
- Cluster & system status — instance roles, leader election, health.
- KEK versions — encryption key fleet state; see Encryption & HSM.
- Variables — project-scoped values injected into SSH/WinRM action sets.
| Page | Covers |
|---|---|
| General settings reference | Every field on Settings → General: features, approvals, certificate defaults, runtime limits, DNS propagation, UI preferences. |
| Organizations & projects | Tenancy model, org-wide vs project-scoped resources, OV/EV organization profiles, project lifecycle. |
| License | Online/offline activation, plan limits, grandfathered renewals, grace period. |
| Project variables | ${{ VAR_NAME }} values and secrets injected into SSH/WinRM ActionSets. |
| Cluster instances | Live processes, heartbeats, leader election, failover timing. |
| System status | Per-component health, leaders, sweep results and history. |
| Scheduler status & sweeps | The full sweep catalog, intervals, renewal due-ness logic. |
| KEK versions page | Reading key versions, fleet readiness, and rotation history in the UI. |
The Web UI Guide walks through the corresponding screens.