Start automating certificate deployment today
Free 90-day trial. No credit card required. Direct access to our engineering team to get you set up.
Integrations
Automate certificate deployment across your entire infrastructure.
CertKit issues and renews certificates centrally, then deploys them to every server in your stack via the CertKit Agent. No ACME on each server, no shared folders, no manual steps on renewal.
Each integration ships as a pre-built deployment script in your account. Select a template, configure once, and CertKit runs it on every renewal.
Windows and Microsoft
IIS
Site binding update
Remote Desktop Services
RDP listener and gateway
Microsoft Exchange
Enable-ExchangeCertificate
Active Directory Federation Services
AD FS binding
SQL Server
Registry TLS bind
WinRM
HTTPS listener
Azure Key Vault
Certificate import via REST
Windows Certificate Store
PFX import
Network appliances
F5 BIG-IP
REST API, SSL profile update
Palo Alto
PAN-OS XML API
Web servers
nginx
Reload on renewal
Apache HTTP Server
Reload on renewal
HAProxy
PEM bundle, reload
Traefik
TLS file provider
Linux services
PostgreSQL
TLS cert rotation
MySQL / MariaDB
TLS cert rotation
Postfix
Reload on renewal
Dovecot
Reload on renewal
Containers and cloud
Kubernetes
TLS secret update
Docker
SIGHUP on renewal
AWS ACM
Certificate import
Custom deployments
PEM
cert.pem + key.pem for Linux services
PFX / PKCS#12
Single file for Windows and appliances
Java KeyStore
JKS or PKCS#12 for Tomcat, Jetty
Custom script
Any platform, any format
The deployment script is a shell script or PowerShell script that runs on your server after each renewal. CertKit writes the certificate to disk in the format your system needs, and runs your script. If you can write a script that installs a certificate, CertKit can automate it.
Custom templates are fully supported. If you need help writing one for a specific platform, reach out, the engineering team handles setup calls directly.