Secure Sockets Layer (SSL) are cryptographic protocols designed to provide communication security over a computer network. SSL is used in applications such as web browsing, email, instant messaging, and voice over IP (VoIP). These communications use SSL certificates issued by authorities to secure the network traffic. These SSL certificates have an expiry date which need to be monitored else they become invalid and will be rejected by connecting systems / people.
SSL Monitor Specifications:
| Location | Interval | Available States |
|---|---|---|
| Global | 30s | Valid, Expired, X Number of Days until expired |
Monitoring an SSL Certificate
SSL Certificates are normally presented with a DNS Domain for example https://google.com has a valid certificate which can be monitored for expiry. When you configure a SSL Monitor and an Alert Rule you will get notifications when:
- Certificate has 30, 14, 7, 3, 2 or 1 day(s) until expiry
- Certificate is expired
Creating an SSL Monitor
To configure an SSL Monitor you will only need a valid https:// web address. Click Create SSL Check in the top right of the SSL Monitors page. You can enter a identifying name and the valid https:// address.
Checking an SSL Monitor
After 30-60 seconds you should be able to see valid data against your SSL check and the number of days until your cert expires. You'll also be able to see who your SSL certificate signer is and any additional details.
Conclusion
Often SSL Certificate monitoring is forgotten about when designing monitoring solutions. However it's a critical component to security and your service. This monitor will make sure you don't forget or make any mistake by deploying old certificates.