Overview

With SSL/TLS certificate validity periods being shortened industry-wide — potentially down to a 43-day validity period — many administrators need a way to automate certificate renewal. A common request is native integration with Let's Encrypt in Kerio Control, which would allow automated issuance and renewal of trusted SSL certificates using standard ACME validation methods (HTTP-01 and/or DNS-01 challenges).

Kerio Control does not currently provide a Support-confirmed roadmap commitment or ETA for native Let's Encrypt integration with automated certificate renewal. SSL certificates must be obtained externally and imported manually via Definitions > SSL Certificates in the administration interface.

Key Information

• This scenario is an enhancement request which has already been logged with the GFI Product Management team
• The requested capability is native Let's Encrypt support with automated certificate renewal (not only initial issuance).
• Requested validation methods may include HTTP-01 challenge and/or DNS-01 challenge.
• Until this feature is available, certificates must be renewed and imported manually. Monitor the Kerio Control Release Notes for announcements about new features and updates. This article will also be updated when the status changes.