search

matteocorti / check_ssl_cert

A shell script (that can be used as a Nagios/Icinga plugin) to check an SSL/TLS connection.
GNU General Public License v3.0
368 stars 132 forks source link

AddTrust External CA Root is expired #459

Closed uomociuffo closed 1 year ago

uomociuffo commented 1 year ago

Hello, I've been using the check_ssl_cert plugin for a few days and it works correctly, I just have a problem on a particular site that I need to monitor the expiration of the SSL certificate. for that site it gives me this error SSL_CERT CRITICAL "site": x509 certificate element 2 (AddTrust External CA Root) is expired (was valid until May 30 10:48:38 2020 GMT, 1089 days ago)|days_chain_elem1=160;20;15;; days_chain_elem2=-1089;20;15;;

tried with --noauth option but got same error.. is it possible to ignore this check? I am only interested in the expiration of the site certificate, not the intermediate or CA or External CA Thank you

System (please complete the following information):

matteocorti commented 1 year ago

You could try with --first-element-only (or with --skip-element 2)

uomociuffo commented 1 year ago

with --first-element-only work fine Thanks!