PKI Spotlight is a monitoring and assessment platform designed for Public Key Infrastructure (PKI) and identity systems. The product provides automated technical assessment of Active Directory Certificate Services (ADCS) environments through data collection and analysis. The platform operates as a multi-tenant SaaS solution hosted in Azure, where each organization maintains isolated credentials and data. Authentication is managed through Microsoft Azure B2C, with organizations controlling account creation and access permissions. The ADCS Collector component uses PowerShell to call native Windows Server APIs to gather configuration data from certificate authorities and related components. It queries Active Directory for PKI-related settings and policies, and retrieves information from log files and policy files on each CA. The collector creates JSON files containing configuration details, which are then uploaded to the assessment portal for analysis. Data transfer occurs over TLS 1.2 encrypted connections to the Azure-hosted portal. All stored data is encrypted at rest using 256-bit AES encryption. Organizations control data retention and sharing settings through the portal dashboard. By default, uploaded files are stored only during report generation and then deleted, though organizations can opt to retain data for collaboration with PKI Solutions. The platform generates PDF assessment reports based on the analyzed configuration data. It supports multi-vendor HSM monitoring, certificate and CRL inventory management, SSO via SAML, and SIEM integration through Syslog API.