Home Directory Plugins Network Protocols HTTP check_certificates.pl

Search Exchange

Search All Sites

Nagios Live Webinars

Let our experts show you how Nagios can help your organization.

Contact Us

Phone: 1-888-NAGIOS-1
Email: sales@nagios.com

Login

Remember Me

check_certificates.pl

Current Version
0.5.3
Last Release Date
2018-02-02
Compatible With
  • Nagios 3.x
  • Nagios 4.x
License
Other
Hits
4239
Files:
FileDescription
check_certificates.plcheck_certificates.pl v0.5.3
Network Monitoring Software - Download Nagios XI
Log Management Software - Nagios Log Server - Download
Netflow Analysis Software - Nagios Network Analyzer - Download
Check expiration and/or validity of SSL/x509 certificates. Supports STARTTLS and check through a proxy server.
check_certificates.pl is a plugin to check validity and/or expiration date of
SSL certificates.

check_certificates.txt supports STARTTLS and going through a proxy.

License: Perl 5 license.

check_certificates.pl comes with a MANUAL PAGE.
TO SEE FULL DOCUMENTATION:
- run
perldoc check_certificates.pl
- or run
check_certificates.pl -M
(the latter may not work if you don't have all the prerequisites installed).

Prerequisite packages:

- IO::Socket::INET6
- IO::Scoekt::SSL
- IO::Scoekt::SSL::Utils
- LWP::UserAgent
- Monitoring::Plugin

only for debug:
- Data::Dumper


SYNOPSYS
$ check_certificates.pl -h
check_certificates.pl v0.5.3

This nagios plugin is free software, and comes with ABSOLUTELY NO WARRANTY.
It may be used, redistributed and/or modified under the terms of the GNU
General Public Licence (see http://www.fsf.org/licensing/licenses/gpl.txt).

This plugin uses IO::Socket::SSL to check the validity of an SSL certificate by connecting to the specified HOST[:PORT].

Usage: check_certificates.pl [-v|--verbose] [-t <timeout>] [-d|--debug] [-h|--help] [-M|--manual] [-P|--useEnvProxy] [--proxy=[<scheme>://][<user>:<password>@]<proxy>[:<port>]] [--proxyForScheme=<scheme>] [--verify] [-S|--starttls] [-c|--critical=INTEGER:INTEGER] [-w|--warning=INTEGER:INTEGER] HOST[:PORT] [HOST[:PORT] [...]]

-?, --usage
Print usage information
-h, --help
Print detailed help screen
-V, --version
Print version information
--extra-opts=[section][@file]
Read options from an ini file. See https://www.monitoring-plugins.org/doc/extra-opts.html
for usage and examples.
-c, --critical=INTEGER:INTEGER
Critical threshold (in days) for certificate expiration.
Don't forget the colon (see manual).
See https://www.monitoring-plugins.org/doc/guidelines.html#THRESHOLDFORMAT for the threshold format, or run check_certificates.pl -M (requires perldoc executable).
-d, --debug
Print debugging messages to STDERR. Package Data::Dumper is required for debug.
-M, --manual
Show plugin manual (requires perldoc executable).
--proxy=[<scheme>://][<user>:<password>@]<proxy>[:<port>]
Use this proxy to connect to the final endpoint(s).
--proxyForScheme=<scheme>
Specify to which scheme(s) the proxy applies. This option can be specified multiple times. The default is to use proxy for https, as if 'https_proxy' environment variable was set.
-P, --useEnvProxy
Get proxy configuration from environment variables.
-S, --starttls
Use STARTTLS to test the targets.
--verify
Enable certificate validity verification.
If certificate and certificate chain are not valid, a critical event is issued. The default is to NOT validate certificates automatically.
-w, --warning=INTEGER:INTEGER
Warning threshold (in days) for certificate expiration.
Don't forget the colon (see manual).
See https://www.monitoring-plugins.org/doc/guidelines.html#THRESHOLDFORMAT for the threshold format, or run check_certificates.pl -M (requires perldoc executable).
-t, --timeout=INTEGER
Seconds before plugin times out (default: 15)
-v, --verbose
Show details for command-line debugging (can repeat up to 3 times)