You could create a simple external script that monitors this.  Has it become an issue with RDP not renewing the certificate before it expires?

Tom

On Wed, Sep 25, 2024 at 3:22 PM Grant Taylor via Xymon <xymon@xymon.com> wrote:
Hi,

How do I have Xymon monitor the TLS cert used by RDP?

I can easily get the cert using the following commands:

    openssl s_client -connect <IP>:3389 < /dev/null |& openssl x509
-noout -startdate -enddate

I'd like to apply the same type of logic to RDP that the HTTPS tests use
for certificate expiration warning / critical.

I skimmed the hosts.cfg manual and didn't find a way to monitor TLS for
arbitrary ports.

I also don't think that the static [rdp] entry in protocols.cfg can be
extended to monitor dynamic TLS information.

Any guidance would be appreciated.



--
Grant. . . .
unix || die
_______________________________________________
Xymon mailing list -- xymon@xymon.com
To unsubscribe send an email to xymon-leave@xymon.com