Frequently asked questions

Sign up for a free account, add the domains you want to monitor, configure alert preferences, and you're done. Most users complete setup in under five minutes — no agents to install.

No. TLS Radar monitors your certificates externally over the public internet, the same way your visitors and customers see them. Nothing to install, no agents to maintain.

Most users are up and running in under 5 minutes. For larger portfolios, our bulk import lets you add hundreds of domains at once.

Expiration windows, weak ciphers, deprecated protocols (SSL 2.0/3.0, TLS 1.0/1.1), broken chains, hostname mismatches, revocation status, and known vulnerabilities. Each issue ships with a clear remediation hint.

Depends on your plan. Free accounts get manual scans on demand. Paid plans add automated scanning from hourly down to per-minute. You can always trigger an instant manual scan from the dashboard.

TLS Radar focuses on publicly reachable endpoints. For private PKI and internal-only certificates, our Enterprise plan includes a self-hosted scan agent that reports back to your dashboard.

Yes — free forever, no credit card required. The free tier is generous enough to monitor a small portfolio and try every core feature.

Anytime. Upgrades take effect immediately with prorated billing. Downgrades apply at the next billing cycle so you keep what you paid for.

Yes. Enterprise plans include unlimited domains, SSO, custom branding, white-label reports, private PKI support, and a dedicated contact. Contact sales for a tailored quote.

Email is included on every plan. Paid plans add Slack and webhook delivery. You configure exactly which thresholds (30, 14, 7, 3, 1 day before expiration) trigger which channels.

Yes — our REST API is available on Business and Enterprise plans. Manage scans, fetch results, and stream events directly into your own systems.

Absolutely. We actively collect requests and prioritize them publicly. Enterprise customers get priority consideration for custom development.