Certificate monitoring for HTTPS/SSL/TLS endpoints

Get alerts before your certificates expire. CertObserver monitors certificates used for HTTPS and other SSL/TLS endpoints. It performs periodic checks to detect upcoming expirations, hostname mismatches, incomplete certificate chains and untrusted root certificates.

Screenshot of CertObserver endpoint monitor list showing e.g. days until expiration

Why expiration alerts matter even with auto-renewal

Even properly configured auto-renewals break. Certificate monitoring detects missed renewals before they cause outages.

How monitoring works

Checks run at least every 4 hours for each endpoint.
Alerts are sent to one or more email addresses when:
- A certificate is nearing expiration. Set multiple thresholds, for example 30, 14, 7, 3, 2 and 1 days before expiration.
- Hostname mismatches, incomplete certificate chains or untrusted root certificates are detected.
- Multiple consecutive checks fail due to connection issues.
Works for any protocol where the TLS handshake happens immediately after the TCP connection is established (for example HTTPS).

Pricing

CertObserver uses pay-as-you-go pricing where you only pay for what you use. See the pricing page for details.

Free trial

A 14-day free trial is available without having to provide any credit card details or other billing information. Sign up and get started in a couple of minutes.