Is Certeasy a certificate authority (CA)?

No. Certeasy is not a CA and does not issue public certificates. It acts as an internal ACME server in front of your existing Microsoft ADCS CA. All issuance remains on-prem.

Do I need to expose Certeasy on the Internet?

Never. Certeasy is designed to run fully on-premise. Your ACME clients point to an internal URL such as:
https://acme.your-domain.local/directory.

How is Certeasy installed?

You install Certeasy on an internal server, connect it to your ADCS CA, and configure your servers to use the internal ACME URL.

Can I use certbot with Certeasy?

Yes. Certeasy supports any standard ACME client including Certbot, acme.sh, Posh-ACME, and others.

Which ACME challenge is supported?

Version 1 supports HTTP-01, the simplest and most compatible method for enterprise environments. Version 2 will introduce distributed validators for segmented networks.

What’s the difference between the Free, Starter, Pro and Enterprise plans?

• Free: €0, up to 100 certificates/year, 1 ADCS CA, ideal for testing and POCs.
• Starter: €299/year, up to 1000 certificates/year, 1 ADCS CA, ACME HTTP-01, email support (best effort).
• Pro: €499/year, unlimited certificates, 1 ADCS CA, dashboard (V3), monitoring & alerting, priority support.
• Enterprise: €999/year/ca, unlimited certificates, multi-CA ADCS, distributed validators (V2), dashboard, multi-network agents and advanced integration options.

How does CA-based billing work?

The Free, Starter and Pro plans include one ADCS Certification Authority per license. The Enterprise plan is billed per ADCS CA, allowing you to manage multiple authorities by adding additional Enterprise licenses.

What does “price stability over time” mean?

Once you become a customer, your price stays the same. Any future pricing changes will apply only to new customers.

How does support work?

• Free: community support (not guaranteed).
• Starter: email support (best effort).
• Pro: priority email support.
• Enterprise: priority support and onboarding sessions on request.
There is no phone support.

Are the certificates secure?

Yes. Certeasy uses your existing ADCS templates and policies. Certificates are identical to those issued through Microsoft consoles, just automatically.

Does Certeasy require Internet access?

No. Certeasy operates fully offline. It never contacts certeasy.tech.

What features are planned next?

V2: distributed validators.
V3: dashboard, certificate inventory, network discovery, alerting.
Our vision: full automation of internal certificate management.

Can I upgrade from Starter to Pro or Enterprise?

Yes, at any time. Upgrading requires no reinstallation.