Majic Projects ~ [CLOSED] MAR-99 - Checks for certificate validity

Majic Projects

Majic Ansible Roles

Projects
Wiki
- Quick links
- Wiki
- Project wikis
- Conntrackt
- Django Pydenticon
- Gimmecert
- Majic Ansible Roles
- Pydenticon
- Scripts
- Global content

You are not logged in

Majic Ansible Roles / Closed Feature request MAR-99 Checks for certificate validity

Votes

This issue has been closed with status "Closed" and resolution "RESOLVED".

- No additional actions available

Issue basics

Type of issue

Feature request Unknown issue type
Issue label

No label set
Category

Not determined
Targetted for

1.5.0 Not determined
Status

Closed

Status not determined
Progress
Priority

Not determined

Affected by this issue (0)

There are no items

People involved

Posted by
branko (@branko)

Branko Majic
@branko

Last seen online at Apr 15, 2024 - 10:15

Show user details
Owned by

Not owned by anyone
Assigned to
branko (@branko)

Branko Majic
@branko

Last seen online at Apr 15, 2024 - 10:15

Show user details
Not assigned to anyone
Subscribers

0 subscriber(s)

Click here to show the list of subscribers

Times and dates

Posted at

Apr 07, 2017
Last updated

Apr 10, 2017
Estimated time

4 hours Not estimated
Time spent

4 hours No time spent

Click here to see time logged against this issue

Issue details

Resolution

RESOLVED Not determined
Reproducability

Not determined
Severity

Not determined

Attachments (0)

There is nothing attached to this issue

Child issues (0)

This issue does not have any child issues

Duplicate issues (0)

This issue does not have any duplicates

Show / hide more details »

Description

Since the roles heavily depend on X.509 certificates for protecting communication channels, it is vital to make sure the certificates are checked for their validities in order to notify administrator when the certificates need to be renewed.

It would be useful to implement cronjobs for all certificates used by different roles to make sure certificates are renewed in timely manner.

The following should be done:

Expand all roles that deploy certificates to also deploy a cronjob that checks for validity of certificate. The cronjob should produce results in output format that makes it easy to notice certificates that are near expiration (within 30 days).
At least the following roles should be updated: wsgi_website, ldap_server, mail_server, xmpp_server, php_website, and web_server. Check if any other roles need to be updated.
Update role documentation.
Update usage instructions.

Todos (0 / 0)

Options

There are no comments

Welcome to The Bug Genie

Log in with your username and password