Solved Web App Availability Certificate monitoring

Question

Solved Web App Availability Certificate monitoring

0

Peter Aston 404 Rep. 28 Jun, 2017

Is there a way to override the SSL evaluation as part of Web App Availability monitoring?

I’ve got some URLs with self-signed certs that go ‘critical’ – adding them to Trusted Root CAs store on the SCOM Management Servers fixes it, but isn’t very clean.

I realise I can use Web App Transaction monitors instead, and untick the ‘Monitor SSL Health’ box, but then I don’t get the nice Web Availability Test perspective in SqUp.

scom-2016 squaredupv3 web

JTP13 answered 28 Jun, 2018

crowdpleaser - 28 Jun, 2017

Not a direct answer to your question so I'm adding this as a Comment, but if you're working on Web App Availability Monitoring in general, you may find Tyson Paul's URL Genie Management Pack helpful. It's not something I have direct experience with but do know a very well respected free, community Management Pack from a leading Microsoft Premier Field Engineer and I noticed it also mentions "some benefits of using this monitor type are: ignore/trust SSL cert (server side)".… Continue reading

Not a direct answer to your question so I'm adding this as a Comment, but if you're working on Web App Availability Monitoring in general, you may find Tyson Paul's URL Genie Management Pack helpful. It's not something I have direct experience with but do know a very well respected free, community Management Pack from a leading Microsoft Premier Field Engineer and I noticed it also mentions "some benefits of using this monitor type are: ignore/trust SSL cert (server side)". Hope this is helpful
Peter Aston - 30 Jun, 2017

Thanks for the tip crowdpleaser - does look a useful management pack, cheers.

Best answer

1

Peter Aston 404 Rep. 30 Jun, 2017

To answer my own question, I don’t think it’s possible to override SSL evaluation for the Web App availability monitor. Adding the self signed certificates to the SCOM management servers in the web monitoring resource pool mostly fixed the issue, but we were getting a certain amount of flappage on the monitors. Setting them to error 3 times before raising an alert seems to have done the trick. Seems a lot of work for when I just want a simple ‘anything other than 200 is an error’!

The URL Genie management pack mentioned by crowdpleaser above looks a useful addition to web monitoring. Thanks for the help guys.

-Pete

Peter Aston selected as best answer 14 Sep, 2017

2 answers

Toggle fullscreen

Write

Answer this question

To reply or comment, use the 'Comment' link on the relevant answer or question.

score 1 · Answer 1 · 2017-06-28T13:47:14+00:00

Hi,

I would create a group with the objects and disable it for that group. If you want to disable for every instance, it’s just a matter of disable monitor for all object of class

score 0 · Answer 2 · 2018-06-28T17:04:48+00:00

There is a way around this. Go to Internet Options, advanced, security, and UNCHECK warn about certificate name mismatches.

Solved Web App Availability Certificate monitoring

Best answer

2 answers

Answer this question

Related Questions