SSL Certificate expired monitoring

Hello all, I’ve got SAM monitoring for SSL certificate expiring date/time which it’s successfully doing. But it seems to be the default ssl certificate, can we get it monitoring a chosen ssl certificate rather than the default as we are interested in knowing when this is nearing expiry etc.

From my understanding SAM doesn’t have the granularity to. any ideas? Am I understanding incorrectly? Thanks

Find more posts tagged with

Accepted answers

HillyBilly

Hi,

Here the link to the way I resolved the issue.

The page gives you some guidance on how to monitor IIS and how to get a report as well. you can then schedule the report to find out what SSL Certs are about to expiry.

IIS Website certificates information and report monitoring - Forum - Server & Application Monitor (SAM) - THWACK

Here's one for SQL Certs.
SQL Instance SSL Certificate monitoring and report - Forum - Server & Application Monitor (SAM) - THWACK

and if you have a network device / appliance / apache TomCat / WebLogic / External Sites
Monitor Appliance and Website certificate expiration date - Application Monitor Templates - Server & Application Monitor - THWACK

All comments

marcrobinson

You may want to look at using a powershell component to specify which certificate to check or check them all. Otherwise, if the SSL certificate is tied to a specific URL - you can test that URL for cert expiration. There are several powershell template on thwack that did this or similar. One thing to check for any sort of SAM monitoring is the Content Exchange portion. There is often something that you can use or modify to fit your needs.

TehAj87

Thanks the links. I'll take a look and let you know how I get on. Thanks again.

mapujece

You're correct that SAM doesn’t allow monitoring a specific SSL certificate by default. However, you can create a custom SSL certificate expiry monitor by using a custom script or custom poller to check the expiry date for the specific certificate you're interested in. This way, you can track its expiration instead of just the default SSL certificate. Additionally, while working on system performance, don’t forget the importance of energy efficiency in your workspace. For example, garage door insulation tips can help maintain a more consistent temperature, improving both comfort and energy savings while you focus on your IT management tasks.

chad.every

This enhancement is planned for mid next year and is under active development to be available out of the box. So stay tuned!

TehAj87

Thanks for the reply. I struggled with creating custom scripting so I resorted to creating a time/date custom property, populated that with the desired time/date and built an SWQL based alert to trigger 90/30 day before that date. Not the best solution I know.

DGNetops

Good info to know but really? We have to wait until 2026 for it to be better out of the box? Yeesh.

chad.every

@DGNetops , I could have been better with a date. My post was late Dec 2024, and I can see how that now sounds like 2026. The 2025.2 release will have these certificate enhancements. RC is the second half of April 2025 and GA is planned for the first half of June 2025.

DGNetops

Ah - got it. Thats what I get not for not paying attention better myself. Its still going to be great having it built in - trying to sort through all of the custom apps for this to determine whats relevant and still works is a pain. Appreciate the update.

chad.every

@TehAj87 @DGNetops This feature has been implemented in 2025.2. See the 2025.5 RC Blog for more details. The RC is available in the SolarWinds Customer Portal.

HillyBilly

Hi,

Here the link to the way I resolved the issue.

The page gives you some guidance on how to monitor IIS and how to get a report as well. you can then schedule the report to find out what SSL Certs are about to expiry.

IIS Website certificates information and report monitoring - Forum - Server & Application Monitor (SAM) - THWACK

Here's one for SQL Certs.
SQL Instance SSL Certificate monitoring and report - Forum - Server & Application Monitor (SAM) - THWACK