Concepts Certificate Manager
Certificate Manager is a service for managing TLS certificates in Yandex.Cloud. You can use the service to obtain and update Let's Encrypt® certificates and add your own certificates.
Warning
- If you use a Let's Encrypt certificate, check domain rights after you add it.
- If you have a user certificate, be sure to renew it on time.
Certificate types
Certificate Manager supports two types of certificates:
- Let's Encrypt certificates (
Managedcertificates): Certificates issued through Let's Encrypt and managed by Certificate Manager. For more information about these certificates, see Let's Encrypt certificate. - User certificates (
Importedcertificates): Certificates added by the user. You are responsible for renewing these certificates on time. For more information about these certificates, see User certificate.
Certificate statuses
The lifecycle and statuses of certificates depend on their type.
- Let's Encrypt certificates (
Managedcertificates) can have the following statuses:Validating: The certificate was requested from Let's Encrypt and is pending the domain rights check.Issued: The certificate was obtained and can be used in services integrated with Certificate Manager.Invalid: The certificate failed the check (the domain rights check took more than one week or failed).Renewing: The certificate is being renewed.Renewal_failed: The certificate failed to renew.
- User certificates (
Importedcertificates) always have theIssuedstatus: the certificate was obtained and can be used in services integrated with Certificate Manager.