cancel
Showing results for 
Search instead for 
Did you mean: 

SSL certificate expiration

Occasional Contributor

SSL certificate expiration

Hello!

Has anybody ever configured snmp monitoring of upcoming SSL certificate expiration? We use SA4500 device.
It will be great if someone can advice with snmp OID or any other useful information.

Thank you.
Tags (1)
5 REPLIES 5
Moderator

Re: SSL certificate expiration

I do not believe that is in our OID; however, it may be in the events log
Do you export your logs via syslog?
Occasional Contributor

Re: SSL certificate expiration

Yes, we have syslog. But do you think that upcoming cert expiration can be detected via logs?
Thank you.
Occasional Contributor

Re: SSL certificate expiration

Or may be some feature/command exists on SSL device that allows to check certificate validity?
Highlighted
Contributor

Re: SSL certificate expiration

There is a RPC called get-certificate-info which provides certificate validity. Check the DMI guide for details. Also, the administrator GUI in version 8.2 provides alerts on upcoming certificate expirations.
Occasional Contributor

Re: SSL certificate expiration

Thank you Filbert.
DMI is not enabled on our devices. But we found another solution. Just gather information about ssl expiration from External IP of VS using linux "openssl" command.