Question 1

What is SSL certificate monitoring?

Accepted Answer

SSL certificate monitoring is the practice of continuously checking your website's SSL/TLS certificate to ensure it remains valid, properly configured, and not approaching expiration. A monitoring service checks your certificate daily and alerts you before it expires, preventing browser security warnings that drive visitors away.

Question 2

Why do SSL certificates expire?

Accepted Answer

SSL certificates expire by design to ensure regular re-verification of domain ownership and to limit the impact of compromised keys. Most certificates from Let's Encrypt expire every 90 days, while commercial certificates typically last 1 year. Auto-renewal is common but can fail silently.

Question 3

What happens when an SSL certificate expires?

Accepted Answer

When your SSL certificate expires, browsers display a full-page security warning that most users won't bypass. Your site becomes effectively inaccessible. Additionally: search rankings drop (Google uses HTTPS as a ranking signal), API integrations break, and email delivery may be affected if your mail server shares the certificate.

Question 4

How far in advance does upsonar alert me?

Accepted Answer

upsonar sends SSL expiry alerts at 30 days, 14 days, and 7 days before expiration by default. Paid plans allow custom alert thresholds. This gives you plenty of time to renew or troubleshoot auto-renewal failures.

Question 5

Can auto-renewal fail?

Accepted Answer

Yes, auto-renewal fails more often than you'd expect. Common causes: DNS changes that break domain validation, firewall rules blocking the CA, expired payment methods for paid certificates, server migrations, or changes to the .well-known directory for HTTP validation. Independent monitoring catches these failures.

Question 6

Does upsonar check certificate chains?

Accepted Answer

Yes. We validate the complete certificate chain from your server certificate through intermediate certificates to the root CA. Incomplete chains are a common misconfiguration that causes trust errors in some browsers and API clients while appearing fine in others.

Free SSL Certificate Monitoring

Why SSL Monitoring Matters

Browser Warnings

Silent Renewal Failures

30-Day Early Warning

What We Check

Check Your SSL Certificate Now

Related

Frequently Asked Questions

Never Miss an SSL Expiry Again