Home
Welcome to the Ultimate CA Manager (UCM) documentation! This wiki provides comprehensive guides for all features.
🎉 v2.0.3 Released! Bug fixes for Docker deployments and input validation. View Release Notes
| Mobile | Tablet |
|---|---|
 |
 |
- Full CA Management - Create, import, manage Certificate Authorities with hierarchy support
- Certificate Lifecycle - Generate, sign, revoke, renew, export certificates
- CSR Management - Create, import, sign Certificate Signing Requests
- Certificate Templates - Predefined configurations for server, client, code signing
- CRL & CDP - Certificate Revocation Lists with HTTP/HTTPS distribution points
- OCSP Responder - Real-time certificate status validation (RFC 6960)
- Trust Store - Manage trusted root CA certificates
- SSL Checker - Verify SSL certificates on any hostname (TLS version, cipher suite, expiry)
- CSR Decoder - Parse and display CSR contents
- Certificate Decoder - Analyze certificate details (extensions, SANs, key usage)
- Key Matcher - Verify certificate and private key match
- SSL Converter - Convert between PEM, DER, PKCS#12, PKCS#7 formats
- SCEP Server - RFC 8894 compliant auto-enrollment for network devices
- ACME Support - Let's Encrypt compatible (certbot, acme.sh) with account management
- OCSP - Online Certificate Status Protocol responder
- CRL/CDP - Certificate Revocation List distribution points
- WebAuthn/FIDO2 - Hardware security key support (YubiKey, Passkeys)
- mTLS Authentication - Mutual TLS certificate-based authentication
- TOTP Two-Factor - Time-based one-time passwords
- Password Strength - Visual strength indicator with policy enforcement
- Session Management - Timeout warning, force password change
- Audit Logs - Full action logging with hash chain integrity verification
- Rate Limiting - Brute force protection on login
- User Groups - Organize users with role-based access
- API Keys - Generate keys for automation and integrations
- Session History - Track all login sessions
- 12 Theme Variants - 6 color themes × Light/Dark modes
- Auto Dark Mode - Follow system preference
- Command Palette - Ctrl+K global search with quick actions
- Split-View Layout - Sidebar, explorer panel, details panel
- Real-time Updates - WebSocket-based live refresh
- Responsive Design - Mobile-first with adaptive layouts
- Contextual Help - Help modals on every page
- Certificate Authority Management
- Certificate Operations
- Certificate Templates 🆕
- Certificate Toolbox 🆕
- CRL & CDP Distribution
- SCEP Server
- OCSP Responder
- ACME Protocol Support
- Import & Export 🆕
- Import from OPNsense
- mTLS Authentication
- WebAuthn/FIDO2
- Trust Store 🆕
- Troubleshooting
- Security Best Practices
-
Docker Hub:
docker pull neyslim/ultimate-ca-manager:2.0.3 -
GHCR:
docker pull ghcr.io/neyslim/ultimate-ca-manager:2.0.3 -
DEB:
wget https://github.com/NeySlim/ultimate-ca-manager/releases/download/v2.0.3/ucm_2.0.3_all.deb -
RPM:
wget https://github.com/NeySlim/ultimate-ca-manager/releases/download/v2.0.3/ucm-2.0.3-1.fc43.noarch.rpm
-
Web UI:
https://your-server:8443 -
Default Credentials:
admin/ (check/etc/ucm/ucm.env)⚠️ Change immediately! - GitHub: NeySlim/ultimate-ca-manager
- Docker Hub: neyslim/ultimate-ca-manager
- 🐛 CA Creation Fix - Fixed crash with null validity/keySize values on Docker
- 🔤 DN Validation - Country code auto-uppercased, CSR validation added
- 🐳 Docker Path Unified - All data in
/opt/ucm/data(same as DEB/RPM) - 🔄 Migration Support - Auto-migrate from old Docker path on upgrade
- 🎨 Complete UI Redesign - New React 18 frontend with Radix UI
- 🎭 12 Theme Variants - 6 color themes × Light/Dark modes
- 📊 Enhanced Dashboard - Real-time stats, charts, activity feed
- 🧰 Certificate Toolbox - SSL checker, decoders, key matcher, converter
- 👥 User Groups - Organize users with permissions
- 📋 Certificate Templates - Predefined configurations
- 🔐 Trust Store - Manage trusted root CAs
- 📝 Audit Trail - Complete action logging with hash chain verification
- 🔒 Password Security - Strength indicator, forgot password flow
- ⏰ Session Management - Timeout warning, force password change
- 🔌 API v2 - RESTful JSON API with OpenAPI docs
- 📦 Docker Hub - Now available on Docker Hub
- ⬆️ Auto-migration - Seamless upgrade from v1.8.x
- 🐛 Nginx Dependency Fixed
- Nginx is now truly optional
- UCM can run standalone with built-in HTTPS server
- Fixed GitHub Actions workflow packaging bug
- 📦 Deployment Flexibility
- Standalone mode (no reverse proxy needed)
- Reverse proxy mode (nginx/apache)
- Docker deployment
- 📝 Documentation Updates
- All guides updated to v1.8.3
- CHANGELOG with full history
- Clear deployment options
- ✅ Export Authentication - All formats (PEM, DER, PKCS#12) with JWT
- 🎨 Visual Theme Previews - 2×4 grid with live previews
- 🐳 Docker/Native Compatibility - Dynamic path resolution
- 🔒 Global PKCS#12 Modal - Available across all pages
- 🔄 Dependency Updates (Python 3.13 compatible)
- 🔒 Security: cryptography 46.0.3, pyOpenSSL 25.3.0
- 🔑 WebAuthn: Updated to 2.7.0 with FIDO2 improvements
- 🐛 Bug Fixes: Certificate selector, Dockerfile improvements
- ✨ Collapsible sidebar submenus with smooth animations
- 🎯 My Account section relocated to bottom of sidebar
- 📏 Optimized sidebar width (220px uniform across all themes)
- 🖼️ 14×14px submenu icons for better visual hierarchy
- 💾 localStorage persistence for submenu states
- 🐛 Fixed OPNsense import JavaScript errors
- 📊 Fixed import statistics display
- 🔧 Improved toast notification system
- ✨ Complete Tailwind CSS removal (~827 classes)
- 🎨 Custom themed scrollbars
- 🔐 CRL Information pages (public & integrated)
- 🎭 Modal system improvements
- 📱 Full responsive design
- 🌈 8 beautiful themes
| Property | Value |
|---|---|
| Latest Stable | 2.0.3 |
| Previous Stable | 2.0.0 |
| Python | 3.10+ (3.13 compatible) |
| Platform | Linux, Docker (multi-arch) |
| License | BSD-3-Clause |
| Repository | GitHub |
| Docker Registry | GHCR |
- Release Notes - All versions
- v2.0.3 Release - Latest stable with bug fixes
- v2.0.0 Release - Major UI rewrite
- Screenshots Gallery - See v2.0 in action
- CI/CD Workflows - Build status
- Issues: GitHub Issues
- Discussions: GitHub Discussions
- Documentation: This wiki
Last Updated: 2026-02-10
Maintained By: NeySlim