Soon we will offer the ability to automate SSL installation and renewal using the ACME protocol. Among different options for Linux + macOS, InterSSL will offer a Windows graphical user interface which will allow you to professionally configure simple-acme (= Open Source ACME manager for Windows):
According to CA/Browser Forum Ballot SC081v3, there will be a transition period between March 2026 and March 2029 during which the validity periods for SSL certificates will be gradually reduced from 398 days to 200, 100, and 47 days:
SECTIGO *) Source
- Until March 12, 2026, validity 398 days (13 months)
- From March 13, 2026, validity 199 days (6.5 months)
- From ca. Q1, 2027, validity 99 days (3.25 months)
- From ca. Q1, 2029, validity 46 days (1.5 months)
DIGICERT *) Source
- Until Feb 24, 2026, validity 398 days (13 months)
- From Feb 25, 2026, validity 199 days (6.5 months)
- From ca. Q1, 2027, validity 99 days (3.25 months)
- From ca. Q1, 2029, validity 46 days (1.5 months)
CERTUM *) Source
- Until March 12, 2026, validity 365 days (12 months)
- From March 13, 2026, validity 199 days (6.5 months)
- From ca. Q1, 2027, validity 99 days (3.3 months)
- From ca. Q1, 2029, validity 46 days (1.5 months)
The relevant date is the SSL issuance date, NOT the order date and NOT the configuration date.
You can continue to use the existing process and decide for yourself when to switch individual certificates to fully automated issuance/renewals.
However, by March 2029 at the latest we highly recommend your SSL certificate process should be automated.
p.s. S/MIME certificates are NOT affected and will still be issued for 24 months / 2 years.
