Skip to main content
Raru
Raru
New Member
January 10, 2025
Solved

Monitor local SSL-Certificates with PRTG

  • January 10, 2025
  • 3 replies
  • 1528 views

Hi Everyone, 

 

we like to monitor our local SSL-Certificates from our Fortigate with PRTG to E-Mail us when the day of experation is near.

 

has Anyone found a posibilty to do so ? I looked for a solution the last day an didnt found any. 

 

Greetings! 

 

 

 

 

Best answer by funkylicious

Hi,

You have the posibility to configure a trigger to alert you if you are running FortiOS 7.2.0+ .

https://docs.fortinet.com/document/fortigate/7.2.0/new-features/470232/certificate-expiration-trigger-7-2-1

 

3 replies

funkylicious
SuperUser
funkyliciousAnswer
SuperUser
January 10, 2025

Hi,

You have the posibility to configure a trigger to alert you if you are running FortiOS 7.2.0+ .

https://docs.fortinet.com/document/fortigate/7.2.0/new-features/470232/certificate-expiration-trigger-7-2-1

 

"jack of all trades, master of none"
pminarik
Staff
pminarik
Staff
January 10, 2025

You can run a REST API GET request for /api/v2/monitor/system/available-certificates/

This will dump a list of all certificates present (JSON), and one of the keys is validity from and to, in two formats: unicode timestamp and "YYYY-MM-DD HH:MM:SS GMT".

The output can also be filtered as usual for REST API (e.g. by appending: ?filter=name==Fortinet_CA_SSL ).

UHa6
UHa6
New Member
January 13, 2025

Hi,
in my PRTG there is a sensor for checking ssl certificates (HTTPS) which is working fine for me, around of 30 https certificates are checked once a day. Don't forget to set warning and error level!

If you want to check other certificates than https, you have to do this with a PowerShell script and store it in EXE directory below of "Custom Sensors" in PRTG directory. We did this somewhere but I don't find this now, sorry.

 

Happy checking

Terms & ConditionsAccessibility statement