Unified Diff: check_ssl_cert.sh
Issue 29792596:
#3298 - SSL monitoring script for icinga (Closed)
Patch Set:
Created May 28, 2018, 2:54 p.m.
Use n/p to move between diff chunks;
N/P to move between comments.
« no previous file with comments
|
« no previous file
|
no next file »
|
no next file with comments »
Expand Comments ('e') | Collapse Comments ('c') | Hide Comments ('s')
Expand Comments ('e') | Collapse Comments ('c') | Hide Comments ('s')
| Index: check_ssl_cert.sh |
| diff --git a/check_ssl_cert.sh b/check_ssl_cert.sh |
| new file mode 100755 |
| index 0000000000000000000000000000000000000000..3553857bb6b67c196da6e64f82f2598dd290192c |
| --- /dev/null |
| +++ b/check_ssl_cert.sh |
| @@ -0,0 +1,88 @@ |
| +#!/bin/sh |
| + |
| +# Icinga plugin that checks how many days are left until SSL certificate expires |
| +# Usage: <PluginDir>/check_ssl_cert -H <HOSTNAME> -P <PORT> -c <CRITICAL> -w <WARNING> |
| + |
| +PATH="/usr/local/sbin:/usr/local/bin:/sbin:/bin:/usr/sbin:/usr/bin" |
| +export PATH |
| +PROGNAME=`basename $0` |
| +PROGPATH=`echo $0 | sed -e 's,[\\/][^\\/][^\\/]*$,,'` |
| + |
| +. $PROGPATH/utils.sh |
| + |
| +CURRENT_DATE=`date +%y%m%d` |
| +HOST=$2 |
| +PORT=$4 |
| +CRITICAL=$6 |
| +WARNING=$8 |
| + |
| +DAY=`echo | openssl s_client -connect "$HOST":$PORT 2>/dev/null | openssl x509 -noout -enddate 2>/dev/null | awk '{print $2}'` |
| + |
| +if [ ! $DAY ] |
| +then |
| + echo "UNKNOWN - Could not connect to $HOST via port $PORT" |
| + exit $STATE_UNKNOWN |
| +fi |
| + |
| +MONTH=`echo | openssl s_client -connect "$HOST":$PORT 2>/dev/null | openssl x509 -noout -enddate | awk '{print $1}'` |
| +MONTH=`echo ${MONTH#*=}` |
| +YEAR=`echo | openssl s_client -connect "$HOST":$PORT 2>/dev/null | openssl x509 -noout -enddate | awk '{print $4}'` |
| + |
| +case $MONTH in |
| + "Jan") |
| + MONTH="01" |
| + ;; |
| + "Feb") |
| + MONTH="02" |
| + ;; |
| + "Mar") |
| + MONTH="03" |
| + ;; |
| + "Apr") |
| + MONTH="04" |
| + ;; |
| + "May") |
| + MONTH="05" |
| + ;; |
| + "Jun") |
| + MONTH="06" |
| + ;; |
| + "Jul") |
| + MONTH="07" |
| + ;; |
| + "Aug") |
| + MONTH="08" |
| + ;; |
| + "Sep") |
| + MONTH="09" |
| + ;; |
| + "Oct") |
| + MONTH="10" |
| + ;; |
| + "Nov") |
| + MONTH="11" |
| + ;; |
| + "Dec") |
| + MONTH="12" |
| + ;; |
| + "*") |
| +esac |
| + |
| +DIFF=$(( ($(date --date="$YEAR$MONTH$DAY" +%s) - $(date --date="$CURRENT_DATE" +%s) )/(60*60*24) )) |
| + |
| +if [ $DIFF -le $CRITICAL ] |
| +then |
| + echo "CRITICAL - $HOST: SSL certificate has been expired!" |
| + exit $STATE_CRITICAL |
| +elif [ $DIFF -le $WARNING ] && [ $DIFF -gt $CRITICAL ] |
| +then |
| + echo "WARNING - $HOST: SSL certificate will be expired in $DIFF days!" |
| + exit $STATE_WARNING |
| +elif [ $DIFF -gt $WARNING ] |
| +then |
| + echo "OK - $HOST: SSL certificate will be expired in $DIFF days" |
| + exit $STATE_OK |
| +else |
| + echo "UNKNOWN - $HOST: Could not retrieve data" |
| + exit $STATE_UNKNOWN |
| +fi |
« no previous file with comments
|
« no previous file
|
no next file »
|
no next file with comments »
