tyler.durden
/
icinga2
mirror of https://github.com/Icinga/icinga2.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

check_ssl_cert: support --ignore-tls-renegotiation (#9042) 

* check_tls_cert: support  --ignore-tls-renegotiation

Extend template, so we can support --ignore-tls-renegotiation

* Update docs
This commit is contained in:
Christian Gut 2021-11-02 12:05:30 +01:00 committed by GitHub
parent f5f8ccb1f4
commit b5132a59ef
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
2 changed files with 5 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
doc/10-icinga-template-library.md
View File

@ -5758,6 +5758,7 @@ ssl_cert_cipher | **Optional.** Cipher selection: force {ecdsa,rsa
ssl_cert_ignore_expiration | **Optional.** Ignore expiration date.
ssl_cert_ignore_ocsp | **Optional.** Do not check revocation with OCSP.
ssl_cert_ignore_sct | **Optional.** Do not check for signed certificate timestamps.
ssl_cert_ignore_tls_renegotiation | **Optional.** Do not check for renegotiation.
#### jmx4perl <a id="plugin-contrib-command-jmx4perl"></a>

4
itl/plugins-contrib.d/web.conf
View File

@ -562,6 +562,10 @@ object CheckCommand "ssl_cert" {
set_if = "$ssl_cert_ignore_sct$"
description = "Do not check for signed certificate timestamps"
}
"--ignore-tls-renegotiation" = {
set_if = "$ssl_cert_ignore_tls_renegotiation$"
description = "Do not check for renegotiation"
}
}