Agents Administration - Tests
 

Configuration of SSLCertValidityTest

This test reports the validity period of the SSL certificates (in days) that are configured for monitoring.

The default parameters associated with this test are:

  • The TEST PERIOD list box helps the user to decide how often this test needs to be executed. 

  • In the TARGETS text box, provide a comma-separated list of {HostIP/Name}:{Port) pairs, which represent the SSl enabled web sites to be monitored. For example, 192.168.10.7:443,192.168.10.8:443. The test connects to each IP/port pair and checks for validity of the certificate associated with this target. One set of metrics is reported for each target. The descriptor represents the common name (CN) value of the SSL certificate.

  • Provide a list of comma separated file paths for the SSL Certificates that are to be monitored in the TARGETFILES text box. For example, C:/server.crt, D:/admin.crt. The test reads the SSL Certificates for the web sites that are to be monitored from this location and checks for the validity.

  • In general, SSL Certificates are bound together in a file and each certificate will be identified by a unique key. In the KEYSTORE FILE text box, provide the location of this file so that each key assigned to individual certificates will be auto accessed during monitoring and the relevant certificate will be picked out for monitoring. For example, the location of this file may be: C:/egurkha/manager/tomcat/webapps/eGmanager.bin

  • In the KEYSTORE PASSWORD text box, provide the password that is used to obtain the associated certificate details from the keystore file.

  • Confirm the keystore password by retyping it in the CONFIRM PASSWORD text box.

  • If multiple components of the same component type are awaiting configuration, then an APPLY TO OTHER COMPONENTS check box will appear in this page. Clicking on this check box will allow you to apply the configuration to all/selected components of that type.

  • Once the necessary values have been provided, clicking on the UPDATE button will register the changes made.

When changing the configuration for specific servers, a “*” beside the text box corresponding to the parameter signifies that these values have to be manually configured by the user. The parameter values that require to be configured will typically be prefixed with a “$” or contain a series of “*”. A value of "none" in the parameter value indicates that the corresponding parameter value can be changed if required.