Does Spectrum have the capability to monitor the Kerberos key generation process/job

book

Article ID: 140600

calendar_today

Updated On:

Products

CA eHealth CA Spectrum

Issue/Introduction

The customer wanted to know if they could monitor the Kerberos key generation process in Spectrum to alarm if a key is valid for more than 4 hours. 

Environment

Release : 10.4

Component : Spectrum Core / SpectroSERVER

Kerberos

Resolution

The only way to validate if the key is valid for more than 4 hours is to run a "klist" command. There is no way to monitor this out of the box but this could be done with a script to create an event/alarm if the "klist command returned a certain value.