Skip to main content

Example of configuring TLS(SSL)-certificate verification

Last update:
For your information

This is an example of setting up an availability check for a TLS(SSL)-certificate so that 10 days before the certificate expires, you receive an email notification about it.

  1. Create a check.
  2. Add your email to your contacts.
  3. Set up email newsletters.

1. Create a check

  1. In the Dashboard, from the top menu, click Products and select Check Availability.

  2. Make sure you have checks available to create - in the upper right corner, see the number of checks created and the total number of checks available. If all available checks have been created, order additional checks. Three checks are available free of charge.

  3. Click Create Validation.

  4. Enter a name for the check, such as Certificate Validation.

  5. Optional: enter tags for filtering in the check list.

  6. Select SSL as the validation type.

  7. In the Host/IP field, enter the domain for which the certificate is issued.

  8. Select the protocol to be used for inspection - IPv4 or IPv6.

  9. Select the validation period - how often the validation request will run, for example every five minutes.

  10. Select the validation timeout - the time to wait for a response from the server to the validation request, after which the validation will be considered unsuccessful, for example five seconds.

  11. Select the sequence of execution of the checks. The execution sequence determines from which inspection points the queries will be sent:

    • sequentially - each next request will be executed from the next check point from the list of selected points;
    • parallel - each request will be executed from all selected points simultaneously;
    • randomly - each next query will be executed from a random point from the list of selected points.

  12. Specify the connection port, the default port is 443.

  13. Specify the certificate expiration period - the number of days before the certificate expires when you want to receive the mailing. For example, if you specify 10 days, the mailing will be sent 10 days before the certificate expires.

  14. Select the checkpoints from which to send requests. The points have IP addresses - if you have a firewall installed on your server, enable these IP addresses in the firewall rules.

  15. If you do not want certificate validation results to be displayed on the public statistics page of your account availability checks, uncheck the Output in public report checkbox.

  16. If you do not want the certificate validation results to be included in the weekly summary report, clear the Include in weekly email report checkbox .

  17. Optional: test the validation - click Test Validation.

  18. Click Create and Run.

2. Add email for mailing lists

  1. In the Dashboard, from the top menu, click Products and select Check Availability.

  2. Go to Reports and mailingsContacts tab.

  3. Click Add Contact.

  4. Enter the name of the contact, it will only appear in the control panel.

  5. Select the contact type - Email.

  6. Enter your mailing address.

  7. Optionally, to send newsletters only at certain times, check the Limit time of sending newsletters checkbox and specify the time of sending in the required time zone.

  8. Click Add.

  9. An e-mail with a confirmation link will be sent to the specified e-mail address. To confirm your e-mail, open the link from the e-mail in any browser.

3. Set up e-mail newsletters

  1. In the Dashboard, from the top menu, click Products and select Check Availability.

  2. Open the Checks tab.

  3. Open the validation page you created in step 1, → the Newsletters tab.

  4. Check the email you added in step 2.

  5. Click New Newsletter.

  6. Select the event - Certificate Expired.

  7. Select when to inform about the event (send a mailing) - immediately, when the check detects the remaining validity period of the certificate (10 days), or after the required number of repeated checks. If your certificate is automatically renewed and the renewal is delayed, we recommend that you choose to send the mailing after repeated checks. If the certificate has time to renew before the revalidation, the mailing will not be sent.

  8. Select the frequency of informing, e.g. no more than one mailing per minute.

  9. If you don't want to receive notification that the certificate expiration date has been restored, uncheck the Notify about restoration checkbox. Reinstatement mailings are not sent at the moment of reinstatement, but at the frequency you specified in step 8. For example, if the certificate was restored in half an hour, but you specified the frequency of mailings once an hour, the recovery mailing will arrive one hour after the failure mailing.

  10. Click .