SSL Certificate FAQ

SSL certificate monitoring is the process of continuously checking your SSL/TLS certificates for expiration dates, security vulnerabilities, and configuration issues. It helps prevent website downtime and security warnings by alerting you before certificates expire or when security problems are detected.

MySSL.info automates this process, scanning your domains and sending notifications via email, Slack, Discord, or webhooks. This proactive approach ensures you never miss an expiring certificate.

SSL certificates expire for important security reasons. Certificate Authorities (CAs) set validity periods, typically ranging from 90 days to 1 year, to ensure regular verification of domain ownership and to limit the impact of compromised certificates.

Regular expiration also encourages the adoption of newer, more secure cryptographic standards. When certificates expire, browsers display security warnings that can damage user trust and business reputation.

You should check your SSL certificates daily at minimum. However, with automated monitoring like MySSL.info, certificates are checked continuously without manual intervention.

For critical business websites, more frequent monitoring (hourly or every 15 minutes) is recommended to catch issues immediately. Our service sends alerts at 30, 14, 7, and 1 day before expiration, giving you ample time to renew.

TLS (Transport Layer Security) is the successor to SSL and is the cryptographic protocol that secures communications over computer networks. When you see HTTPS in your browser, TLS is encrypting the connection between your browser and the website.

TLS security involves proper certificate configuration, strong cipher suites, and up-to-date protocol versions. MySSL.info scans for TLS vulnerabilities like BEAST, POODLE, Heartbleed, and other known security flaws.

SSL grades indicate the security level of your certificate configuration:

• A+ Excellent security with features like HSTS enabled
• A Strong security with good configuration
• B Minor issues that should be addressed
• C Significant security weaknesses present
• F Critical vulnerabilities requiring immediate attention

MySSL.info provides detailed recommendations to improve your grade.

To renew your SSL certificate, follow these steps:

1. Generate a new Certificate Signing Request (CSR) from your server
2. Submit the CSR to your Certificate Authority or use automatic renewal with services like Let's Encrypt
3. Complete domain validation (email, DNS, or HTTP verification)
4. Download and install the new certificate on your server

Many hosting providers offer automatic renewal. MySSL.info alerts you well before expiration so you have plenty of time to renew.

When an SSL certificate expires, browsers display prominent security warnings like "Your connection is not private" or "NET::ERR_CERT_DATE_INVALID". Most users will not proceed past these warnings, resulting in:

• Lost website traffic and potential customers
• Revenue loss from abandoned transactions
• Damage to brand reputation and user trust
• Potential search engine ranking penalties
• Broken API integrations and automated systems

This is why proactive SSL monitoring is essential for any business with an online presence.

There are several types of SSL certificates, each suited for different needs:

MySSL.info monitors all certificate types with the same comprehensive security checks.

MySSL.info uses advanced scanning technology powered by testssl.sh to thoroughly analyse your SSL/TLS configuration. Our scans check:

• Certificate validity and expiration dates
• Certificate chain completeness and trust
• Protocol versions (TLS 1.2, TLS 1.3, deprecated protocols)
• Cipher suite strength and security
• Known vulnerabilities (Heartbleed, POODLE, BEAST, etc.)
• HSTS and other security headers

Scans run automatically based on your subscription tier (daily, hourly, or every 15 minutes) and results are stored for trend analysis and compliance reporting.

Yes! MySSL.info offers a generous free tier that includes:

• Monitoring for up to 2 domains
• Monthly SSL scans
• 7 days of scan history
• Email notifications
• 1 domain uptime monitoring (hourly)

This is perfect for personal websites and small businesses. For larger organisations needing more domains, faster scanning, longer history retention, and advanced integrations (Slack, Discord, webhooks), we offer Pro, Business, and Enterprise plans.

MySSL.info integrates with popular communication and DevOps tools:

Receive certificate expiry alerts and security notifications directly in your team's communication channels. API access is available for integrating SSL monitoring into your existing infrastructure and CI/CD pipelines.

Getting SSL expiry alerts with MySSL.info is simple:

1. 1 Create a free MySSL.info account
2. 2 Add your domains to monitor
3. 3 Configure your notification preferences (email, Slack, Discord, webhook)
4. 4 Set your alert thresholds (e.g., 30, 14, 7, 1 days before expiry)

You'll automatically receive alerts when certificates approach expiration or when security issues are detected. No technical expertise required!