search cancel

Monitor Certificate Revocation List (CRL)

book

Article ID: 213597

calendar_today

Updated On:

Products

DX Unified Infrastructure Management (Nimsoft / UIM)

Issue/Introduction

Is it possible to monitor Certificate Revocation List's (CRL) with UIM?

Environment

Release : 20.3

 

Resolution

Currently we do not have any native functionality which can monitor CRL's; this would constitute an enhancement request.

https://knowledge.broadcom.com/external/article/12135/how-to-raise-an-enhancement-request-for.html

The closest thing we have might be the logmon probe; you can use this to run commands or scripts and parse the output.

For example, here is a community thread someone put together on monitoring certificate expiration - not quite the same thing of course, but maybe this gives you an idea of what can be accomplished:

https://community.broadcom.com/communities/community-home/digestviewer/viewthread?MID=764981

As mentioned the above doesn't exactly cover CRL monitoring but does provide some insight into how you can use logmon commands to monitor certificate expiration and might be a good place to start.