Skip to main content

SSL certificate monitoring

SSL certificate monitoring that catches more than expiry dates.

A certificate can be unexpired and still break trust. Upwhisper watches the certificate, the hostname it covers, the chain your server presents, and whether visitors are pushed away from HTTPS.

Real dashboard signal

Not just “expires soon”.

The domain detail view separates expired certificates, hostname mismatch, chain issues, and HTTPS downgrade risk so the fix is clear.

Expiry thresholds

Hostname mismatch

Incomplete chain

HTTPS downgrade

What it checks

  • Certificate expiry and whether the certificate is currently valid.
  • Hostname mismatch, where the certificate served over HTTPS does not cover the monitored domain.
  • Incomplete certificate chains, including missing intermediate certificates.
  • HTTPS failures where the site is reachable but the secure connection is broken or downgraded.

How alerts work

  • Expiry warnings follow the thresholds enabled for the account or domain.
  • A confirmed SSL problem sends one alert when it starts, then stays quiet until it is fixed or crosses another enabled threshold.
  • Renewal and fix events are recorded so the activity history shows both the problem and the recovery.

Questions buyers ask before trusting a monitor.

Does upwhisper only check the SSL expiry date?

No. It also checks whether the certificate is valid, whether it matches the hostname, whether the server sends a complete chain, and whether HTTPS is failing or downgraded.

Will I get spammed every time a certificate is still expired?

No. Upwhisper tracks alert state, so the same open SSL incident does not send the same alert every run.