Certd is a self-hosted platform that automates the full lifecycle of SSL certificates using the ACME protocol. It handles certificate application, renewal, and deployment across multiple domains through a pipeline-driven workflow engine, with DNS challenge orchestration and multi-cloud deployment capabilities.
The platform distinguishes itself through its configurable pipeline system, which allows users to build multi-step workflows that can pass outputs between tasks, execute custom scripts, and handle errors. It supports multi-tenant access control with role-based permissions, encrypted credential storage, and brute-force protection, making it suitable for team-based certificate management. The system integrates with over 100 deployment targets including Kubernetes clusters, cloud CDNs, and remote servers via SSH and APIs, and provides a visual pipeline editor for constructing complex automation sequences.
Beyond core certificate operations, the platform offers certificate expiration monitoring with multi-channel notifications through email, webhooks, and messaging platforms. It supports custom plugin development for DNS providers, deployment targets, and authorization methods, and can store data in SQLite, MySQL, or PostgreSQL databases. The system also provides RESTful API endpoints for programmatic certificate lifecycle management and includes features for automated database backups and pipeline export/import.
The application can be deployed using Docker Compose, one-click script installation, or through server management panels, with support for IPv6 access and Synology NAS environments.
