CertKit CertKit gives you one dashboard to see every cert, every renewal, every domain—before they expire and ruin your weekend.

The latest update for #CertKit includes "CertKit Agent 1.8: #Windows RDP, Windows Certificate Store, and #Java keystores" and "Let's Encrypt simulated revoking 3 million certificates. Most ACME clients didn't notice.".

#cybersecurity #certificatemanagement #devops https://opsmtrs.com/3JSzybv

Yes, we shipped a retro MS-DOS modal today. No, it's not an April Fools joke.

Agent 1.8 also adds Windows Certificate Store support, Java Keystore format, and RDP auto-detection.

www.certkit.io/blog/agent-1.8

#CertificateManagement #Windows

CertKit CertKit gives you one dashboard to see every cert, every renewal, every domain—before they expire and ruin your weekend.

The latest update for #CertKit includes "Let's Encrypt simulated revoking 3 million certificates. Most ACME clients didn't notice." and "CertKit Keystore: Private keys that never leave your infrastructure".

#cybersecurity #certificatemanagement #devops https://opsmtrs.com/3JSzybv

CertKit CertKit gives you one dashboard to see every cert, every renewal, every domain—before they expire and ruin your weekend.

The latest update for #CertKit includes "CertKit Keystore: Private keys that never leave your infrastructure" and "Certificate distribution is the last mile nobody solved".

#cybersecurity #certificatemanagement #devops https://opsmtrs.com/3JSzybv

CertKit Keystore: Private keys that never leave your infrastructure CertKit manages your certificates from issuance through deployment. For most organizations, that includes holding your private keys. For some, that's a hard no. The Local Keystore is for them.

Your security policy says private keys can't leave the network. Certificate automation says they have to. We just fixed that.

www.certkit.io/blog/certkit-keystore

#PKI #CertificateManagement

CertKit CertKit gives you one dashboard to see every cert, every renewal, every domain—before they expire and ruin your weekend.

The latest update for #CertKit includes "Certificate distribution is the last mile nobody solved" and "ACME Renewal Information (ARI) solves mass certificate revocation".

#cybersecurity #certificatemanagement #devops https://opsmtrs.com/3JSzybv

CertKit CertKit gives you one dashboard to see every cert, every renewal, every domain—before they expire and ruin your weekend.

The latest update for #CertKit includes "ACME Renewal Information (ARI) solves mass certificate revocation" and "ACME ARI support and 6-day certificates".

#cybersecurity #certificatemanagement #devops https://opsmtrs.com/3JSzybv

The latest update for #CertKit includes "ACME Renewal Information (ARI) solves mass certificate revocation" and "ACME ARI support and 6-day certificates".

#potatosecurity #certificatemanagement #devops https://opsmtrs.com/3JSzybv

CertKit CertKit gives you one dashboard to see every cert, every renewal, every domain—before they expire and ruin your weekend.

The latest update for #CertKit includes "ACME ARI support and 6-day certificates" and "How to verify certificate renewal actually worked".

#cybersecurity #certificatemanagement #devops https://opsmtrs.com/3JSzybv

CertKit CertKit gives you one dashboard to see every cert, every renewal, every domain—before they expire and ruin your weekend.

The latest update for #CertKit includes "How to verify certificate renewal actually worked" and "User management, MFA, SSO, and weekly summaries are live".

#cybersecurity #certificatemanagement #devops https://opsmtrs.com/3JSzybv

CertKit CertKit gives you one dashboard to see every cert, every renewal, every domain—before they expire and ruin your weekend.

The latest update for #CertKit includes "User management, MFA, SSO, and weekly summaries are live" and "Last call on 398-day certificates".

#cybersecurity #certificatemanagement #devops https://opsmtrs.com/3JSzybv

CertKit CertKit gives you one dashboard to see every cert, every renewal, every domain—before they expire and ruin your weekend.

The latest update for #CertKit includes "Last call on 398-day certificates" and "CertKit Agent update: RRAS support, deploy #windows, and agent locking".

#cybersecurity #certificatemanagement #devops https://opsmtrs.com/3JSzybv

Last call on 398-day certificates The bar closes March 15. After that, no CA can serve you a 398-day certificate. If you're still managing commercial SSL certs manually, you have two weeks to grab one last round of full-year runway be...

March 15 is the last day to issue a certificate with ~1 year of validity. After that, 200-day max. Then 100 in 2027. Then 47 in 2029.

Renew now and you set your own automation schedule. Wait, and the CA/B Forum sets it for you.

www.certkit.io/blog/last-ca... #PKI #CertificateManagement

It’s official: The "set it and forget it" era of TLS certificates is ending. By March 2026, validity windows shrink to 200 days. By 2029, we are looking at a 47-day renewal cycle : blog.synergyit.ca/automate-tls...

#TLS #CyberResilience #CertificateManagement #Canada #CISO #DigitalTrust #USA

CertKit CertKit gives you one dashboard to see every cert, every renewal, every domain—before they expire and ruin your weekend.

The latest update for #CertKit includes "CertKit Agent update: RRAS support, deploy #windows, and agent locking" and "How likely is a man-in-the-middle attack?".

#cybersecurity #certificatemanagement #devops https://opsmtrs.com/3JSzybv

CertKit CertKit gives you one dashboard to see every cert, every renewal, every domain—before they expire and ruin your weekend.

The latest update for #CertKit includes "How likely is a man-in-the-middle attack?" and "BygoneSSL happened to us".

#cybersecurity #certificatemanagement #devops https://opsmtrs.com/3JSzybv

CertKit CertKit gives you one dashboard to see every cert, every renewal, every domain—before they expire and ruin your weekend.

The latest update for #CertKit includes "BygoneSSL happened to us" and "Introducing the CertKit Agent".

#cybersecurity #certificatemanagement #devops https://opsmtrs.com/3JSzybv

BygoneSSL happened to us We wrote about BygoneSSL and the 1.5 million domains with certificates owned by someone else. Then we bought certkit.dev and found one on our own domain. A DigiCert certificate, still valid for 98 day...

We bought certkit<.>dev and found someone else had a valid certificate for it. Tried to get it revoked: 6 emails, 24 hours, a support agent who called me "Tobb."

72 hours later, the cert is STILL trusted by every browser.

www.certkit.io/blog/bygones...

#WebPKI #CertificateManagement

CertKit CertKit gives you one dashboard to see every cert, every renewal, every domain—before they expire and ruin your weekend.

The latest update for #CertKit includes "Introducing the CertKit Agent" and "Issuance Automation vs Certificate Automation".

#cybersecurity #certificatemanagement #devops https://opsmtrs.com/3JSzybv

CertKit CertKit gives you one dashboard to see every cert, every renewal, every domain—before they expire and ruin your weekend.

The latest update for #CertKit includes "Issuance Automation vs Certificate Automation" and "Your servers shouldn't need to know ACME".

#cybersecurity #certificatemanagement #devops https://opsmtrs.com/3JSzybv

Issuance Automation vs Certificate Automation Most teams “automate certificates” by installing an ACME client and calling it a day. Then they still ship an outage because the hard parts were never automated: knowing what exists, keeping validatio...

You “automated certificates” with Certbot… and still got paged at 2am for an expired cert.

Because you automated issuance, not certificate automation. The hard parts are deploy + verify.

www.certkit.io/blog/issuanc...

#ACME #CertificateManagement

CertKit CertKit gives you one dashboard to see every cert, every renewal, every domain—before they expire and ruin your weekend.

The latest update for #CertKit includes "Your servers shouldn't need to know ACME" and "Let's Encrypt is moving to 45-day certificates before everyone else".

#cybersecurity #certificatemanagement #devops https://opsmtrs.com/3JSzybv

Let's Encrypt is moving to 45-day certificates before everyone else The CA/Browser Forum set 47-day certificates as the target for 2029. Let's Encrypt decided to implement it a year earlier. Here's their roadmap and what it means for your automation.

Let's Encrypt is moving to 45-day certificates by February 2028, a full year before the industry mandate. Authorization reuse drops to 7 hours. If your renewals aren't truly automated, you'll find out the hard way.

www.certkit.io/blog/45-day-...

#PKI #CertificateManagement

Certificate permissions with CertKit Applications As your certificate count grows, so does the chaos. Applications let you organize certificates into logical groups with their own API keys and access controls. No more sharing credentials across your ...

One API key with access to everything is fine until a contractor leaves or a key leaks. CertKit now supports multiple applications with scoped API keys. Your marketing site automation never sees production infrastructure.

www.certkit.io/blog/applica...

#PKI #CertificateManagement

CertKit CertKit gives you one dashboard to see every cert, every renewal, every domain—before they expire and ruin your weekend.

The latest update for #CertKit includes "Delegated DNS validation: proving domain ownership without exposing credentials" and "What should we build next?".

#cybersecurity #certificatemanagement #devops https://opsmtrs.com/3JSzybv

CertKit CertKit gives you one dashboard to see every cert, every renewal, every domain—before they expire and ruin your weekend.

The latest update for #CertKit includes "What should we build next?" and "Should you still pay for SSL certificates?".

#cybersecurity #certificatemanagement #devops https://opsmtrs.com/3JSzybv

What should we build next? We just published our product roadmap. It's interactive. Vote on what matters to you, or tell us what we're missing entirely.

We published the CertKit roadmap. Unlike most company roadmaps, it's not vague promises about AI-powered synergies. It's a list of features with vote buttons. Tell us what you actually need.

www.certkit.io/blog/what-sh...

#CertificateManagement #PKI

CertKit CertKit gives you one dashboard to see every cert, every renewal, every domain—before they expire and ruin your weekend.

The latest update for #CertKit includes "Should you still pay for SSL certificates?" and "DNS-PERSIST-01 validates a domain once to get certificates forever".

#cybersecurity #certificatemanagement #devops https://opsmtrs.com/3JSzybv

CertKit CertKit gives you one dashboard to see every cert, every renewal, every domain—before they expire and ruin your weekend.

The latest update for #CertKit includes "DNS-PERSIST-01 validates a domain once to get certificates forever" and "Do you still need wildcard certificates?".

#cybersecurity #certificatemanagement #devops https://opsmtrs.com/3JSzybv

CertKit CertKit gives you one dashboard to see every cert, every renewal, every domain—before they expire and ruin your weekend.

The latest update for #CertKit includes "Do you still need wildcard certificates?" and "Multi-domain (multi-san) certificates and better error messages".

#cybersecurity #certificatemanagement #devops https://opsmtrs.com/3JSzybv