Skip navigation
Currently Being Moderated

Domain/SSL Certificate Expiration Monitor

VERSION 4  Click to view document history
Created on: Dec 3, 2009 4:53 PM by guyverix - Last Modified:  Nov 16, 2010 5:08 PM by Nick Yeates

Submitted by: Christopher Hubbard


This ZenPack check on the expiration date of domain and ssl certificates. The ZenPack will create /Devices/Ping/Domain and /Devices/Ping/Domain/SSL.  Since zProperties are inherited, this isolates domain checks that dont necessairly have SSL from SSL enabled domains.

Ping checks have been disabled for both Domain and SSL.  Second level domains (ie. are supported.


Both show a boring countdown graph to doomsday in days..

Currently the ZenPack is configured to behave in this way (thresholds can be adjusted as needed):

1)  30 days before expiration, Yellow alarms (warnings).

2)  2 days before expiration it will cross the RRD threshold and you will ALSO start getting criticals for that threshold, as well as the Yellow warning alarms.

3)  After expiration you will get both Nagios and Thresholds as critical events.


Missing manditory binary files also generate a Nagios class error (warn Retval 1)  Threshold crossing is retval 1, Expired domains are retval 2.



GOOD threshold NOT crossed:

./ -x 30 -d -n
Status OK | Valid 14-Mar-2010 Days=135 NetNames Limited

BAD threshold crossed:

/ -x 300 -d -n
Status Warn Domain expire days=135 | Domain will expire in 300 -days or less.  Days=135





  • Zenoss Version: 2.2 (py2.4 file), 3.0 (py2.6 file)
  • ZenPack Dependencies: none
  • External Dependencies: The jwhois command is used by default.  The scripts can be modified to use whois
  • Installation: zopectl restart after installing


Tagged Releases:

Change History:

Trac tickets:

Known issues:

Comments (0)