Certificate Renewal & Rotation

Security

Monitor expiry → request renewal → validate certificate → deploy to infrastructure → verify TLS connectivity.

systemapicli

Why OSOP matters here

Expired certificates cause outages. OSOP tracks every renewal cycle, deployment step, and connectivity test — ensuring your automation actually works and alerting you when it doesn't.

Workflow Steps (5)

Monitor Certificate Expiry

system

Request Renewal

api

Validate New Certificate

system

Deploy Certificate

cli

TLS Connectivity Test

cicd

Connections (5)

Monitor Certificate Expiry→Request Renewalconditionaldays_until_expiry <= 30

Request Renewal→Validate New Certificatesequential

Validate New Certificate→Deploy Certificatesequential

Deploy Certificate→TLS Connectivity Testsequential

TLS Connectivity Test→Deploy CertificatefallbackRollback to old cert

Steps

Connections

Node Types

Open in Visual Editor Browse Examples on GitHub

← PreviousBackup & Disaster Recovery Next →Inventory Sync Pipeline