There is no test built into xymon to monitor only the certificate. I'm using a script taken (and modified) from deadcat.net (long gone). Look at xymonton.org or list archives for suggestions. As I recall, my script rips through the hosts file looking for ssl[:port] tags on hosts. It then makes an openssl s_client call to grab the cert, parse, and evaluate the results.
I hesitate to share a copy of my script here, as it runs on Solaris, is ancient, and uses a whole bunch of crudgy Big Brother references.
-- Do things because you should, not just because you can.
John Thurston 907-465-8591 John.Thurston at alaska.gov Department of Administration State of Alaska
On 8/12/2018 10:58 AM, Enzo Arroyo wrote:
Hello all,
Have a little issue, look, have a host list that my intention is just monitor the SSL expire, this is my file:
0.0.0.0 server.lan # noconn https://server.lan 0.0.0.0 server1.lan # noconn https://server1.lan
But this create 2 checks, http and sslcert, I need just sslcert, I fix it temporary using NOCOLUMNS:http, but this just hidden the col, how can I do for skip this check and check just the sslcert?
Thank you, best regards,