Login
    Contents x
    Check SSL Certificate Expiration (Service Check)
    • 21 Aug 2024
    • 1 Minute to read
    • Print
    • Dark
      Light
    • PDF
    Contents

    Check SSL Certificate Expiration (Service Check)

    • Updated on 21 Aug 2024
    • 1 Minute to read
    • Print
    • Dark
      Light
    • PDF
    Article summary

    Service Check Category: Web Checks

    Passive: NO

    See also Service Check

    Description

    This service check monitors the SSL certificate for a website. It will connect to the website from the Netreo appliance that is polling the managed device to which this service check is assigned. It can alert you a configurable number of days before the certificate expires. It can optionally check the SSL certificate to validate that the Common Name and Issuer DN match the values configured in the check. If the optional parts of the check are configured, the alert will indicate which part of the check failed.

    Check-specific Fields

    (See Service Check for configuration parameters common to all service checks.)

    • HOST TO CHECK - (Optional) Enter the FQDN or IP address of the host having its SSL Certificate checked. If no value is supplied, the IP address of the managed device the check is assigned to is used.
    • PORT - (Optional) Enter the port on the host to use when connecting to the HTTPS endpoint. If no value is supplied, port 443 is used.
    • # DAYS BEFORE EXPIRATION FOR ALARM - (Required) Enter the number of days ahead of expiration to cause the check to enter the CRITICAL state. Integer values only. Optionally, use two comma-separated values (for example 30,10) to configure separate settings for WARNING and CRITICAL states. The first value triggers the WARNING state and the second value triggers the CRITICAL state, so the first value should be the higher of the two. Remember that for service checks, Netreo treats a WARNING state the same as a CRITICAL state (unlike how threshold checks work), and both states trigger an alarm.
    • COMMON NAME - (Optional) Enter a value to compare to the "Common Name" field on the SSL certificate being checked. If the values don't match, the check enters a CRITICAL state.
    • ISSUER DN - (Optional) Enter a regex pattern to compare to the "Issuer DN" field on the SSL certificate. If the values don't match, the check enters a CRITICAL state.
    • DESCRIPTION - (Required) This field specifies a name for this check. The name entered must be unique among service check names on the managed device to which it is added (the name can be used again only on a different managed device). It is used to identify this specific check from among other service checks added to the same host.
    Was this article helpful?
    What's Next
    PLATFORM
    WHY NETREO?
    SOLUTIONS BY INITIATIVE
    SOLUTIONS BY INDUSTRY
    SOLUTIONS BY JOB FUNCTION
    Change password!
    Changing your password will log you out immediately. Use the new password to log back in.
    Change profile
    Success!
    First name must have atleast 2 characters. Numbers and special characters are not allowed.
    Last name must have atleast 1 characters. Numbers and special characters are not allowed.
    Enter a valid email
    Enter a valid password
    Your profile has been successfully updated.
    Logout