x509 loosing hosts

[slalomsk8er]

Describe the bug

I get regularly Unknown for x509 checks with the reason "Host not found"

To Reproduce

1. create a director import
2. wait
3. observe periodical unknowns

Expected behavior

Hosts don't vanish and reappear.

Screenshots

If applicable, add screenshots to help explain your problem.

Your Environment

• Icinga Web 2 version and modules (System - About): 2.12.1 & 1.3.1
• Icinga 2 version used (icinga2 --version): r2.14.2-1
• PHP version used (php --version): PHP 8.0.30
• Server operating system and version: AlmaLinux 8.9

[blueman70]

BUG DESCRIPTION IN ORDER TO CONFIRM SAME PROBLEM I got same issue but using "icingacli", without director. Checking manually with command icingacli x509 check host --ip xxx.xxx.xxx.xxx (or --host, or etc etc) or others results always: UNKNOWN - Host not found No other errors messages found.

ENVIRONMENT

• Icinga Web 2 version and modules (System - About): 2.12.1 & 1.3.2 (latest x509)
• Icinga 2 version used (icinga2 --version): r2.14.2-1
• PHP version used (php --version): PHP 8.3.7
• Server operating system and version: Ubuntu 22.04.4 LTS (jammy)

Some suggestion about it? Thx in advance!!!

[blueman70]

ANSWERING MYSELF - SOLVED ISSUE The Icinga docs about x509 module is not so clear (maybe for me but....???). In order to retrieve the correct certificate for a specific host (or subnet), you need to create a JOB with a icingaweb gui under Certificate Monitoring/Configuration/Jobs and scan JOB (manually or scheduled) in order to acquire data.

In this example I ran a scan to www.apple.com [23.14.136.246] after scanning all certificates are showed on the gui

Hope to be clear and help your issue.

BR

[slalomsk8er]

@blueman70 Thanks for your input. Sadly no help for my issue as the director import created the service from already detected FQDN/IP:port triplets and subsequent job runs loose the triplet and rediscover them.