Get email updates
New writing on certificate management, sent when there is something worth your time. Shrinking lifetimes, ACME on real infrastructure, the occasional outage post-mortem.
This is where we're headed, but we'd rather build what you actually need. Vote on the features that matter to you, or tell us what we're missing.
New writing on certificate management, sent when there is something worth your time. Shrinking lifetimes, ACME on real infrastructure, the occasional outage post-mortem.
We are currently building these features. Vote to help us prioritize.
Issue private certificates directly from CertKit. Trust your account's root Certificate and generate unlimited certificates signed by CertKit.
Enable monitoring TLS endpoints on intranet endpoints.
These are features often requested by customers, or critical to the next step in our vision.
REST API to pull certificate, agent, monitoring, and billing data from CertKit.
REST API to create collections, certificates, scripts, agents, and make programmatic changes in CertKit.
Switch certificate validation over to DNS-PERSIST-01 once implemented by Let's Encrypt.
Configure customized alerting types, rules, and destinations
Create and manage tags for certificates to organize by owner, department, or use case. UI search and filtering by tag.
Features that we think are neat, or have been requested, but we're not sure where they fit into the plan yet.
Certificates for IP Addresses with HTTP-01 Validation
Rotate and re-issue API keys from the UI.
API access to the Certificate Transparency Log to do advanced searches and firehose data.
Keep your hosted certificates geographically located in the EU, UK, or other locations
Setup alerts when new certificates show up in the CTLog, or when a certificate from the log changes status or expires.
Enable receiving a CSR from an endpoint like a Hardware Security Module or appliance that generates its own private key and needs to have the CSR signed.
All the things that CertKit already does today!
Released 2026-07 • Blog Announcement
Agent integration to discover Microsoft Exchange server certificates
Released 2026-06 • Blog Announcement
A robust set of documentation and learning resources for how to use the platform.
Released 2026-06 • Blog Announcement
Create and manage client-accounts under your main account.
Released 2026-05 • Blog Announcement
View, search, and export an audit log from your account. See who has logged in, interacted with certificate, agents, or alerting. Audit the automatic renewal and deployment actions of CertKit.
Released 2026-04 • Blog Announcement
Agent, gateway, or other mechanism to "push" certificates into appliances or systems that are unable to run the agent themselves. This might look like a scripted API call or allowing the agent to upload certificates via SSH or file share.
Released 2026-04 • Blog Announcement
Support for other ACME issuers like Google Trust Services and specifying custom EAB.
Released 2026-03 • Blog Announcement
Agent integration to update RDP Certificates
Released 2026-03 • Blog Announcement
Add and renew certificates into a Java Keystore.
Released 2026-03 • Blog Announcement
A on-premise installable service for the generation and storage of certificate private keys.
Released 2026-03 • Blog Announcement
Honor the ARI certificate renewal timing from Let's Encrypt.
Released 2026-03 • Blog Announcement
Support for Let's Encrypt's short-term 6 day certificates.
Released 2026-03 • Blog Announcement
SAML-compliant SSO implementation
Released 2026-03 • Blog Announcement
Add/invite/remote users from your account. Give them permissions for applications and support manager and viewer roles.
Released 2026-03 • Blog Announcement
Weekly summary email of certificates, renewals, expirations, and agent status. Also the ability to subscribe/unsubscribe from email.
Released 2026-02 • Blog Announcement
Expand the Windows agent to include support for Microsoft Routing and Remote Access Service.
Released 2026-02 • Blog Announcement
The agent simplifies the distribution of certificates to your infrastructure. The agent runs as a service on each of your hosts, allowing you to configure the services and certificates to distribute to each host.
Released 2026-01 • Blog Announcement
Create multiple groups of certificates within an account. Each group should have its own access credentials.
Released 2025-12 • Blog Announcement
Create multi-domain (multi-san) certificates. Allow the control of the certificate Common Name (CN).
Released 2025-11 • Blog Announcement
Be able to search for all the certificates in a domain from the Certificate Transparency Log, and recreate them to be monitored or managed by CertKit.
New writing on certificate management, sent when there is something worth your time. Shrinking lifetimes, ACME on real infrastructure, the occasional outage post-mortem.