upti.my

Never let a certificate expire unexpectedly

SSL/TLS Certificate Monitoring

Expired certificates break trust and break connections. upti.my monitors your SSL/TLS certificates across all domains, alerting you well before expiration and catching chain issues before they affect users.

Start Monitoring in Under 2 Minutes

Certificate expiry: predictable yet catastrophic

SSL certificates have a known expiration date, yet expired certs cause major outages regularly. Auto-renewal helps but isn't foolproof. Rate limits, DNS issues, and configuration drift all cause failures. When a cert expires, browsers show scary warnings and APIs reject connections.

Expiry Alerts

30, 14, 7, 3, and 1 day notifications.

Chain Validation

Verify complete certificate chains.

Cipher Analysis

Check for weak or deprecated ciphers.

Hostname Matching

Verify certs match your domains.

Why certificates still expire unexpectedly

Even with automation, certificate issues slip through:

  • Auto-renewal silently fails when certbot crashes with no notification
  • Forgotten domains where old subdomains expire without warning
  • Chain issues with intermediate certs missing, causing mobile to fail
  • Wildcard sprawl where one cert on 20 services multiplies risk

Comprehensive certificate monitoring

upti.my tracks every certificate across your infrastructure. We alert on upcoming expirations, validate chains, check for security issues, and give you a single dashboard for all your SSL/TLS health.

  • Expiry alerts at 30, 14, 7, 3, and 1 day
  • Certificate chain validation
  • Hostname matching verification
  • Cipher suite analysis

Getting Started

Set up SSL monitoring in the dashboard:

  1. 1

    Create an SSL Monitor

    Select SSL/TLS as your monitor type and enter your domain.

  2. 2

    Configure Expiry Alerts

    Choose when to get notified. Default is 30, 14, 7, 3, and 1 day before expiration.

  3. 3

    Enable Chain Validation

    Verify your full certificate chain is valid. Catch missing intermediates before they break mobile apps.

  4. 4

    Set Security Requirements

    Require minimum TLS version and check for weak cipher suites.

Frequently Asked Questions

When should I get notified about certificate expiry?

upti.my sends alerts at 30, 14, 7, 3, and 1 day before expiration by default. This gives you time to renew manually or debug automation issues. You can customize these thresholds based on your renewal process.

What certificate issues does upti.my detect?

Beyond expiration, we detect incomplete certificate chains, hostname mismatches, weak cipher suites, revoked certificates, and certificates issued by untrusted authorities. All issues that can cause browser warnings or connection failures.

Can I monitor internal/self-signed certificates?

Yes! You can configure upti.my to trust specific CA certificates for internal PKI. We'll still alert on expiration and validate the chain against your trusted roots.

How does this work with Let's Encrypt auto-renewal?

Even with auto-renewal, things fail. Certbot crashes, DNS validation fails, rate limits hit. SSL monitoring catches when auto-renewal doesn't work, giving you time to fix it before expiration.

Related Topics

HTTP Monitoring

Full endpoint checks

DNS Monitoring

Domain resolution monitoring

Status Pages

Communicate status to users

Ready to start monitoring?

Set up your first health check in under 2 minutes. No credit card required.

Get Started for FreeRequest a Demo