For tedious reasons we don’t have the Comtrade F5 management pack. Is anyone doing anything clever with SNMP or the WebABI tile to retrieve certificate information from the F5 appliances that they can share?
Similarly for Unix and Linux servers, we don’t have any visibility into certificate information. I understand that it’s possible to do something with a script and SCOM monitors, but I’m not really clear what that is!
What about for non SCOM agent managed servers? I believe that a Web App Availability test will give certificate expired information, but is it possible for it to give advance warning of expiry as well?
I’ve got the PKI management pack for Windows servers, which is great. I’d like to be able to pull as much of our certificate information into SCOM, but even just dashboarding straight from Squared Up would be a great help.
I tried to setup a Management Pack for F5. You can find it in the SCOM Community MP Catalog (free squaredup sw).
Please have a try and tell me if it works for you.
Presently It does not cover certificates, but I will take a look on it.
I read about a solution from ‘ManageEngine – Key Manager’ which seems to address certificate handling (plus monitoring) very well. – I planned to test it in Q4 …
AP.F5 Management Packs is split into 2 management packs.
AP.F5.Base – F5 Devices, includes; FailoverState, Fans, Power Supplies, Processors, Temperature Sensors, Memory, CPU and Disks.
AP.F5.LTM – Local traffic Manager, includes; Sync-Failover Groups, Traffic Groups, Virtual Servers, Pools, Pool Members, Nodes, Profiles (Currently only ServerSSL and ClientSSL) and Certificates
They are also available on the SCOM Community MP Catalog
Just needs read access via iControl interface, so it’s fairly low level.
Certificate info isn’t exposed via SNMP, this was the only way I found to get it!