rafabu / SCOM-PKICertificateMP

This is for SCOM - System Center Operations Manager: The PKI Certificate Verification MP discovers PKI Certificates and Certificate Revocation Lists inside computers’ local certificate stores. It helps preventing service interruptions caused by invalid certificates by alerting when
GNU Lesser General Public License v3.0
20 stars 11 forks source link

How to disable Multiple Certificate templates In SCOM-PKICertificateMP #38

Open kamalrss88 opened 2 years ago

kamalrss88 commented 2 years ago

Hi Team,

we have disabled one template in local computer certificate store My personnel registry which is working fine . How to disable multiple certificate templates ? how to write regex ?

Thanks, Kamal Sharma

JiiPee-svg commented 2 years ago

rule 1|rule 2|rule 3|etc.

kamalrss88 commented 2 years ago

Hi Jill,

Thanks for update. Do we need to target to Windows computer or class of Heath service ?

SimpleFuego commented 2 years ago

Can someone please provide the exclusion rule for excluding 2 certificates from My / Personal Current Exclusion: ^CN=MS-Organization-P2P-Access.*$

Desired exclusion: CN=MS-Organization-P2P-Access.*$ & CN=ClusinfraCert_wildcard...

^CN=MS-Organization-P2P-Access.$|^CN=CN=ClusinfraCert_wildcard.$| - this did not seem to work.

thank you.

JiiPee-svg commented 2 years ago

CN=MS-Organization-P2P-Access.*|CN=ClusinfraCert_.*

You can test Your regex @ https://regex101.com/

SimpleFuego commented 2 years ago

CN=ClusinfraCert_wildcard.* - This will fail because I am looking for the proper wildcard when I say wildcard. This is the Certificate subject: CN=ClusinfraCert_20210521_073642007

I have tried this filter for Trusted Root and it does not clear the discoveries.

thank you.

JiiPee-svg commented 2 years ago

In what certificate folder @ server this certificate is?

My own exclude is in Discovery of local computer's certificate store "My / Personal" registry - category Discovery - Override target: Class windows Computer ( these was override properties section up)