vigil icon indicating copy to clipboard operation
vigil copied to clipboard

Published 20 hours ago • verified publisher icon valeriansaliou

SSL/TLS Certificate verification

Open gbonnefille opened this issue 3 years ago • 3 comments

Is there a way to validate a SSL/TLS certificate validity?

Motivation: I use Let's Encrypt but, sometimes, renew goes wrong and... certificate is obsolete. Having a probe for that can help a lot.

Please, note that ideally this verification should be distinct enougth from HTTPS polling as someone can desire to register an URL returning an error code (404, 401...). But as we only wish to validate certificate, this shoul be enough.

gbonnefille avatar Jun 30 '21 12:06 gbonnefille

Hello,

No way to validate certificates independently for now. The only way to do it is via an HTTPS URL. Whenever the probe starts failing, it means that the certificate is not valid anymore.

valeriansaliou avatar Jun 30 '21 12:06 valeriansaliou

Is it possible to improve feedback (in tooltip) in order to identify the nature of the failure? Currently, a failing HTTP replica can have:

  • DNS issue
  • node unavailable
  • TLS certificate issue
  • HTTP (404?) issue

Having an information on the origin of the error can help to quickly identify what to do.

gbonnefille avatar Jul 05 '21 10:07 gbonnefille

I would love to be able to modify the tool-tip text using the current script probes.

pchampio avatar Jul 05 '21 15:07 pchampio