Hello,
I've got the following scenario: using a python script, I'm returning the validity of some SSL certificates and, right now, I've got multiple triggers, based on the remaining lifetime of the certificate. I was wondering if it's somehow possible to have a single trigger with thresholds. Something like:
If cert life < 31 days -> trigger severity: info
If cert life < 21 days -> trigger severity: warning
If cert life < 14 days -> trigger severity: average
If cert life < 7 days -> trigger severity: high
If cert life < 3 days -> trigger severity: disaster
I'm looking for this because right now, if a certificate's lifetime is under 3 days, I've got 5 active triggers for the same domain. I know that the triggers can be done like
If cert life < 31 days AND > 21 days -> trigger severity: warning
If cert life <= 21 days AND > 14 days -> trigger severity: average
[...]
but it would get me into a different issue: once the certificate goes under 21 days, the trigger saying "Certificate lifetime under 31 days" gets resolved, thing which could be confusing for the support team and might get them thinking that the issue is resolved, when in case it's worsened. That's why it would be great to be able to escalate the severity of an event based on thresholds.
Thanks in advance.
I've got the following scenario: using a python script, I'm returning the validity of some SSL certificates and, right now, I've got multiple triggers, based on the remaining lifetime of the certificate. I was wondering if it's somehow possible to have a single trigger with thresholds. Something like:
If cert life < 31 days -> trigger severity: info
If cert life < 21 days -> trigger severity: warning
If cert life < 14 days -> trigger severity: average
If cert life < 7 days -> trigger severity: high
If cert life < 3 days -> trigger severity: disaster
I'm looking for this because right now, if a certificate's lifetime is under 3 days, I've got 5 active triggers for the same domain. I know that the triggers can be done like
If cert life < 31 days AND > 21 days -> trigger severity: warning
If cert life <= 21 days AND > 14 days -> trigger severity: average
[...]
but it would get me into a different issue: once the certificate goes under 21 days, the trigger saying "Certificate lifetime under 31 days" gets resolved, thing which could be confusing for the support team and might get them thinking that the issue is resolved, when in case it's worsened. That's why it would be great to be able to escalate the severity of an event based on thresholds.
Thanks in advance.
Comment