🔒 SSL Certificate Monitor

The SSL monitor connects to your server, reads the full SSL/TLS certificate chain, and alerts you before your certificate expires.

🎯 Was Es Macht

Connects to the host and reads the full certificate chain
Records issuer, subject, SANs (Subject Alternative Names), and fingerprint
Calculates days until expiry
Sends alerts at a configurable warning threshold (e.g., 30 days before expiry)
Stores certificate data in the Monitron database for historical tracking

Einstellung	Beschreibung	Standard
Name	A friendly name	—
Host	Domain to check	—
Warn Before Expiry (days)	Alert this many days before expiry	`30`

Daten	Beschreibung
Issuer	Who issued the certificate (e.g., Let's Encrypt)
Subject	The domain the certificate is issued for
SANs	All domains covered by the certificate
Valid From	Certificate start date
Valid Until	Certificate expiration date
Days Until Expiry	Calculated days remaining
Fingerprint	SHA-256 fingerprint
Chain	Full certificate chain data

Bedingung	Status
Certificate valid, > 30 days remaining	✅ Up
Certificate valid, ≤ 30 days remaining	⚠️ Degraded (warning)
Certificate expired	❌ Down
Connection failed / No certificate	❌ Down

Check frequency: SSL certificates don't change often. An hourly or every-6-hours interval is sufficient.
Let's Encrypt: If you use Let's Encrypt (90-day certificates), set the warning to 30 days. Certbot auto-renews at 30 days, so if you're still getting warnings at 14 days, renewal may be broken.
Multiple domains: Create separate SSL monitors for each domain, especially if they use different certificates.
View certificate details: Click on the monitor in the dashboard to see the full certificate information including the chain, SANs, and fingerprint.