I work for an ISP in Systems Engineering. We currently use an in-house wiki to keep track of approximately 30 SSL certificates, including where it was purchased from, what servers it is used on, and when it expires. The ~30 certificates doesn't sound bad, until you factor in that about 10 of them are wildcards and therefore used on multiple services/servers; these 30 certificates cover a variety of services, such as LDAP, HTTP, mail, and a myriad of other functions, probably to the tune of 100-200 actual deployments.
So I decided to build a dedicated software to keep track of these and warn via email, SNMP, and text that certificates need renewing. The tool can even randomly poll via the method used (LDAP, HTTPS, IMAP, etc) and make sure the certificate is good for that server/service.
I have tried looking for solutions for this. Unfortunately, most of the options out there are for enterprise-only environments, and want to only work for Windows/IIS, or only track HTTP.
SO I BUILT MY OWN. It still needs more testing
Would love to get some beta tester on it, anyone would be interested?
No comments:
Post a Comment