SSL module not sending certificate expiration notice

Unanswered Question
Jun 25th, 2008

Hi all

Has anyone had any experience with this feature on the SSL module?

I've set the "ssl-proxy pki certificate check-expiring interval 1" command and has a syslog and SNMP receiver up and running. Logging is set to debug both for buffer and syslog.

The thing is that I have a proxy service with a certificate that's about to expire tomorrow and there is notification either in the log buffer or on the syslog.


I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
mchin345 Tue, 07/01/2008 - 12:34

The ssl-proxy pki history command enables logging of certificate history records per-proxy service into memory and generates a syslog message per record. Each record tracks the addition or deletion of a key pair or certificate into the proxy services key and the certificate table.

Up to 512 records can be stored in the memory at one time.

Syed Iftekhar Ahmed Tue, 07/01/2008 - 15:00

Do you have following traps configured

snmp-server enable traps ssl-proxy oper-status

snmp-server enable traps ssl-proxy cert-expiring

snmp-server host ssl-proxy



This Discussion