For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

Icon for Nimbostratus rank

Nimbostratus

Aug 24, 2016

User alert with regular expression

Hi everybody

We have situation that need to alert certificate expiration. Yeah it's normally have no issue. But we have a concern from customer that they got alert about certificate expired from ca-bundle.crt which they didn't using.

Is there a way to create alert snmp trap that exclude ca-bundle.crt by regular expression? ie.

alert CERT_CA_MAIL_EXPIRE "Certificate (.*?) in file (anyfile except ca-bundle.crt) will expire on (.*?)"
 {
        snmptrap OID=".1.3.6.1.4.1.3375.2.4.0.309";
        email toaddress="customermail@gmail.com"
        fromaddress="F5"
}

Or we have to delete ca-bundle.crt from F5. Is there a affect in a bad way for not have ca-bundle.crt on F5?

Thank you very much

application delivery

1 Reply

Vijay_E
Cirrus
Aug 24, 2016
As long as you are not using the ca-bundle.crt in any SSL profile, you should be okay with deleting it.

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)

F5 Academy at AppWorld 2026

DevCentral News

Introducing the F5 AI Assistant for BIG-IP

Technical Articles

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5