Help Center
Find configuration guides, troubleshooting steps, and answers to common security questions.
Frequently Asked Questions
What is CertificateGuardian?
CertificateGuardian is an SSL/TLS certificate monitoring and discovery platform. It helps organizations discover, monitor, and verify certificates to prevent downtime and maintain security compliance.
How does active discovery work?
Our scanner connects to your registered hostnames to retrieve and audit active certificates for expiry, weak ciphers, and trust chains. To protect target infrastructure, scans are fully SSRF-protected: the scanner resolves and blocks loopback, private, link-local, or multicast IP ranges (RFC 1918 / RFC 4193) before initiating connections.
How does CertificateGuardian monitor renewals?
CertificateGuardian acts as a safety net. It monitors and verifies renewals configured on your local infrastructure (e.g., via Certbot, Kubernetes cert-manager, or cloud providers). We scan your endpoints daily and cross-reference Certificate Transparency logs to alert you immediately if a scheduled renewal fails or is misconfigured.
Can I get alerts?
Yes. You can configure notification channels for Email. You can set custom thresholds (e.g., notify 30, 15, and 7 days before expiry). We are also expanding integrations with Slack, Discord, and custom Webhooks.
What is "Quantum Readiness"?
With the advent of quantum computing, traditional RSA/ECC algorithms may become vulnerable. Our platform audits your infrastructure to identify where Post-Quantum Cryptography (PQC) algorithms should be prioritized.
Still have questions?
We're happy to help. Send us an email and our technical team will get back to you.
Contact Support →