Skip to content

How do I add an SSL/TLS certificate?

Requires Pro

Open the Certificates module, click “Add Certificate”, enter the Common Name (CN), and save. Only Common Name and status (default Active) are required. Add the issuer, valid from/to, key type/size, fingerprint, and the auto-renew option. The list is automatically sorted by Valid To — the certificate expiring soonest appears at the top.

The Certificates module is part of the Pro tier (feature certificates). In lower tiers, the menu item is hidden; an API call is rejected with 403.

  1. Open the “Certificates” module. Select Certificates in the left-hand navigation. You’ll see the list of all certificates, sorted by expiry date. The “Add Certificate” button sits at the top right.

    The certificate overview with the 'Add Certificate' button.
  2. Fill out the form. In the “Add Certificate” dialog, fill in at least the Common Name (CN) and choose a status. Further fields:

    • Issuer, Valid From, Valid To
    • Key Type (e.g. RSA, EC), Key Size (e.g. 2048)
    • Auto-Renew (checkbox), Fingerprint (SHA-256), Notes
    The empty 'Add Certificate' dialog. Common Name and status are required.
  3. Save. Click “Save”. The certificate appears in the list, sorted in by Valid To.

    After saving, the certificate appears in the expiry-sorted list.
  • Tenant assignment: The certificate is assigned to your current tenant (tenant_id) and is invisible to other tenants.
  • Audit trail: Creator/editor are recorded as created_by/updated_by with a timestamp.
  • Sorted by expiry: The list is sorted server-side by Valid To in ascending order — upcoming expirations appear at the top.
  • Default values: Without input, status = active and auto_renew = false apply.
  • Asset link: If an associated_asset_id is set and the asset is later deleted, the link is automatically cleared (the certificate remains).
  • No webhook: Creating a certificate does not trigger a webhook event in the current version.