A photo of Mitesh Shah

Mitesh Shah

Linux Enthusiast
System Administrator

Email Skype Github Twitter Google+ Resume Hire Me Keybase LinkedIn Stackoverflow


Overview

Prerequisites

$ apt-get -y install libwww-perl libjson-perl

$ wget -O /usr/local/nagios/libexec/check_sslscan https://www.unixadm.org/software/nagios-stuff/checks/check_sslscan
$ chmod  a+x /usr/local/nagios/libexec/check_sslscan

Nagios Host Groups

$ vim /usr/local/nagios/etc/hostgroups/https.cfg
define hostgroup{
        hostgroup_name  HTTPS
        alias           HTTPS
        members         example.com
}

Nagios Services

$ vim /usr/local/nagios/etc/services/https.cfg
define service{
        use                             local-service         ; Name of service template to use
        service_description             HTTPS
        is_volatile                     0
        check_period                    24x7
        max_check_attempts              3
        normal_check_interval           3
        retry_check_interval            1
        contact_groups                  oncall-admins
        hostgroup_name                  HTTPS
        notification_interval           30
        notification_period             24x7
        notification_options            w,c,r
        check_command                   check_https
}
$ vim /usr/local/nagios/etc/services/ssllabs.cfg
define service{
        use                             local-service         ; Name of service template to use
        service_description             SSL Labs
        is_volatile                     0
        check_period                    24x7
        max_check_attempts              3
        normal_check_interval           3
        retry_check_interval            1
        contact_groups                  oncall-admins
        hostgroup_name                  HTTPS
        notification_interval           30
        notification_period             24x7
        notification_options            w,c,r
        check_command                   check_sslscan
}

Nagios Commands

$ vim /usr/local/nagios/etc/commands/https.cfg
define command{
        command_name    check_https
        command_line    $USER1$/check_http -H $HOSTADDRESS$ -C 15 --sni
}
$ vim /usr/local/nagios/etc/commands/sslscan.cfg
define command{
        command_name    check_sslscan
        command_line    $USER1$/check_sslscan -H $HOSTADDRESS$ -a 168 #-x
}

Monitor HTTPS SSL Certificate

SSL Labs Grade A

SSL Labs Grade B





Post Navigation