NimbostratusHi expert
is it possible to get notif when ssl certification expired on virtual server by sending via email ?
we usually update ssl certificate and check manualy and want to notif when ssl will expired on virtual server by sending alert and dont check which virtual server manualy
Cirrusyou may find following useful to know which VS is using a particular cert.
https://support.f5.com/csp/article/K20522219
following is to know about expired certs
CirrusDoesn't your cert signing CA send a notification ? Public CA like Entrust does it routienly.
How many certs are you dealing with? I have worked in a large enviroment where a script would fetch all the certs across multilple LBs and someone would create a tracking report based on that and do a TODO assignment list for a team of people to renew it before expiry. Yould could probably do a cron job but it will be taxing on CPU and from past experience security team doesn't like the email sending idea. Your shop might be different.
MVPCheck this link as it matches what you are wanting:
Also BIG-IQ can do this for you from version 4.x :
MVPI think you should go thorugh this page https://support.f5.com/csp/article/K15288#p5
Or use API call and tune as per your requiremnts.
NimbostratusHi Expert
Thanks for helping
i have read this article https://support.f5.com/csp/article/K15288#p5,
i want to confirm that this article only alert cert alert expired without doesnt have list of virtual server assigns oon ssl profile, right ?
i have read this article
MVPIf you managed to get the needed answers, please flag the question as answered.