(NEW) SSL Certificate Date Check

This check is new as of version 4.2.0

This check takes a server name, port numbers, ex. 443, 6443 and 7443 and a warning days parameter.  It will attempt to read the RAW certificate from that port number and decode the certificate.  It will then check the expiration date

on the certificate, compare how many days are left to the number of warning days, then set the warning flag if needed.

Server Name: Domain name of Server (or IP address)
SSL Port #(s):             

Enter Port # that certificate is associated with.

You can check multiple ports on a single server by separating the numbers with a colon:

ex.  443:6443:7443 - these are typically the ports used in Esri's enterprise system. Other ports can be checked though.
Warning Days: Input the number of days in advance that you would like to be notified of the certificate expiration

SUPPLEMENTAL OPTION

File Certificate Date Check 

For this option, SSL Port # parameter is entered     "file:FileName.cer"

This option was added for when a direct connection cannot be made to the certificate, but you still want to be notified when a certificate is expiring.

These certificate files MUST be in the 'scripts' folder and MUST be in the 'PEM' format.  
https://www.ssl.com/guide/pem-der-crt-and-cer-x-509-encodings-and-conversions

 Example:

          -----BEGIN CERTIFICATE-----

          certificate information

           certificate information

           etc....

           -----END CERTIFICATE-----

The certificates associated with ADFS/SAML in AGOL, etc. can also be checked with this method.


Article ID: 484
Last updated: 12 Jul, 2023
Revision: 4
GeoSystems Monitor Enterprise -> Product Guide v4.1 - 4.2 -> Monitor Point Types & Parameters -> (NEW) SSL Certificate Date Check
http://www.vestra-docs.com/index.php?View=entry&EntryID=484