diff --git a/README.md b/README.md
index 34580ae..6bf0ba9 100644
--- a/README.md
+++ b/README.md
@@ -47,6 +47,7 @@ Configuration
 * configure firewall (optional)
 * configure selinux policies (optional)
 * configure forwarding http to https including accesing the /nagios url directly (optional)
+* manage TLS certificates through certbot (optional)
 
 Service
 * manage Nagios service on server
diff --git a/manifests/certbot/config.pp b/manifests/certbot/config.pp
index 3f0c635..3f6e4ab 100644
--- a/manifests/certbot/config.pp
+++ b/manifests/certbot/config.pp
@@ -39,7 +39,7 @@ class cd_nagios::certbot::config (
         unless    =>  template('cd_nagios/certbot/unless_get_cert.erb'),
         notify    =>  Service['httpd'],
         creates   =>  '/etc/httpd/conf.d/.cert_created',
-       }
+      }
 
       # renew certs
 
diff --git a/manifests/main/config.pp b/manifests/main/config.pp
index 25adb6d..63f5c2b 100644
--- a/manifests/main/config.pp
+++ b/manifests/main/config.pp
@@ -37,6 +37,11 @@ class cd_nagios::main::config (
     if $ng_use_selinux_tools == true {
       include cd_nagios::selinux::config
     }
+
+    if $ng_enable_certbot == true {
+      include cd_nagios::certbot::config
+    }
+
   }
 
   if $::fqdn != $ng_nagios_server {