Incubated: SSL Certificate Expiry check

Coordinator
May 8, 2012 at 8:15 AM

Ever had your websites SSL certificate expire on you?

http://stackoverflow.com/questions/826175/determine-ssl-certificate-expiration-date-iis

Some code here to grab the cert details including expiry from any web server - this could easily be rolled into a new HealthCheck... things to consider

Support multiple sites to check

What is the trigger - N days ahead of expiry?

Does it keep nagging you? - eg: once inside N days it will keep firing an alert until the cert is updated. So if you run this check once a day it will fire an alert for every day inside the trigger period until it is renewed. Maybe the best thing is to run this once a week and bypass having to think about managing/muting notifications.

Ideas, thoughts? Any interest in this?

May 11, 2012 at 3:12 PM

This would be great. Look at what happened to SagePay.  My cert Authority/Provider warns me 2 weeks in advance but it is still easy to forget and if your provider is not that proactive, you could find yourself losing a significant customer count or at the very least some revenue. I would love to see this as a health check.

N days to expire is perfect.  That way you can set the trigger to something that gives you time to get the info in order and wait for the Auth to respond. Sometimes it can take days to get the new cert. 

It should keep nagging you as well. That way you cant just Ack and for get it again. It will not be that bad if you set it to check once or twice a day. 

Coordinator
May 11, 2012 at 10:02 PM

Right, thanks for the "+1"! I'll build it this weekend and release it as a "contrib" plugin.

Coordinator
May 13, 2012 at 8:04 AM

Ok, it's baked: http://wolfpackcontrib.codeplex.com/wikipage?title=Wolfpack.Contrib.Checks.Ssl - enjoy!

Any suggestion/bugs then drop it back via the Issues page.

Cheers,

James