The CA/Browser Forum has approved a phased reduction in SSL/TLS certificate validity periods:
• Mar 2026 – 200 days
• Mar 2027 – 100 days
• Mar 2029 – 47 days
For customers using custom domains on Docebo, SSL certificates currently need to be uploaded and managed manually (certificate, private key, intermediate chain).
Many enterprise clients are using OV certificates from providers such as DigiCert, Sectigo and GlobalSign. With these upcoming changes, certificates eventually need to be replaced every 47 days by 2029.
This raises a concern for many admins managing multiple LMS platforms:
Manual certificate rotation at that frequency will become operationally challenging and may introduce risk of service disruption if certificates expire.
A few questions for the Docebo team and community:
• Is Docebo planning to introduce automated SSL lifecycle management?
• Will there be support for automated certificate provisioning (e.g. ACME)?
• Is platform-managed SSL for custom domains on the roadmap?
It would be helpful to understand how Docebo plans to support customers as the industry moves toward much shorter certificate lifetimes.
Would also be interested to hear how other Docebo admins are planning to handle this change.
__
Zairil
