Ad Widget

**Atsushi** · 31-08-2021, 09:39

Hi bormo,
What is the detailed version of Zabbix Agent 2 you are using? If it is not 5.4.4, please upgrade to 5.4.4 and try it.

**idmrty** · 25-08-2021, 16:50

Does it check the revocation status? A crucial thing.

**altuhovsu** · 27-08-2021, 09:48

And is it possible to check multiple tls/ssl certs on the same machine? For example, tls on IMAP, SMTP ports and ssl on HTTPS?

**bormo** · 30-08-2021, 14:17

Hi all,

I get this error:

ZBX_NOTSUPPORTED: Unknown metric web.certificate.get

I'm using Zabbix Agent2 installed from the Zabbix 5.4 Repo for Ubuntu20.04

I see the hint: "Setup and configure zabbix-agent2 with the WebCertificate plugin." but no idea how to include this plugin although it is out-of-the-box regarding to this page:

This topic does not exist yet.

https://www.zabbix.com/documentation/current/manual/config/items/plugins

**Atsushi** · 31-08-2021, 09:39

Hi bormo,
What is the detailed version of Zabbix Agent 2 you are using? If it is not 5.4.4, please upgrade to 5.4.4 and try it.

**Daniel4711** · 08-09-2021, 11:06

Hello all,

I would like to use this plugin.

SSL monitoring and integration with Zabbix

https://www.zabbix.com/de/integrations/ssl

The note at point 1 that you should configure Agent2 to use the WebCertificate plugin is unfortunately very brief.
Is it possible to expand this with an example?

**AlexL** · 08-09-2021, 12:16

Originally posted by Daniel4711

Hello all,

I would like to use this plugin.

SSL monitoring and integration with Zabbix

https://www.zabbix.com/de/integrations/ssl

The note at point 1 that you should configure Agent2 to use the WebCertificate plugin is unfortunately very brief.
Is it possible to expand this with an example?

For this plugin the configuration is done only through template or agent key. There is no requirements to do any configuration through config as there is none.
Hope that helps to answer the question.

**Colttt** · 23-09-2021, 10:31

the most disadvantage is that is not possible to use {HOST.DNS} in {$CERT.WEBSITE.HOSTNAME}, so I should use localhost (which give an error with a not valid cert) or I must edit it in all(!) web server - which is very annoying

**Bjorke** · 04-10-2021, 16:18

Is it an issue using localhost (the zabbix servers) agent to monitor several SSL certificates?
Or is there another way of doing it if you want to monitor multiple certificates on servers you don't have the agent on?

**corinthe** · 06-10-2021, 11:53

Hi everyone,

Bjorke, I have already think about that because I will have the same issues : I was thinking to create a template for each certificate for my side.

I am because I am facing the same issues as borno : ZBX_NOTSUPPORTED: Unknown metric web.certificate.get

But I have a Zabbix server 5.0 and I downloaded the 5.0 release : https://git.zabbix.com/projects/ZBX/...Frelease%2F5.0
I don't find the problem so I am coming to you if you have any idea of what I have to do.

Than you in advance !

**shoemocker** · 21-10-2021, 04:13

I got this configured and working with 1 certificate. I was able to test a good SSL cert and a bad SSL cert and everything works as expected. Thank you!

I am running into issues figuring out how one can monitor multiple SSL certificates with this? If I try to clone the template and change the macro for {$CERT.WEBSITE.HOSTNAME} and then add it to the same machine it says the same keys are in use. So do we have to make unique keys and templates for every certificate we want to monitor or is there an easier way to do this I am not seeing?

**clarker4** · 04-11-2021, 20:18

Recieving the same error: ZBX_NOTSUPPORTED: Unknown metric web.certificate.get

I am running on Zabbix 5.2.6 also running the same agent 5.2.6. what are my options?

**guilhermeboczkovski** · 18-11-2021, 14:14

I still have the same doubt as others who posted on this forum. Is there any way to check multiple tls/ssl certs on the same machine?

I tend to think that there isn't, because the documentation doesn't say it's possible, but it doesn't explicitly say that it's not possible either.

**oernii** · 27-11-2021, 19:51

I just began using this. I also find it limiting to be able only to monitor 1 web on 1 host with this. Most my webservers have multiple virtualhosts with multiple certificates. I now have to either create separate hosts for each web

Edit: so, separate host for web isn't feasible either, as it need agent2 to run, so no "virtual" host.

**oernii** · 29-11-2021, 10:10

Atsushi: yes, you can use the item directly, but you'll lose all the work that has gone to the template (evaluation and triggers). For now I just copied the template to another template, changed the macros and so aplied them to one host.

Ad Widget

Discussion thread for official Zabbix Template TLS/SSL certificates monitoring

Discussion thread for official Zabbix Template TLS/SSL certificates monitoring

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment