(imported topic written by SystemAdmin)
Has anybody done any work on retrieving (probably via an analysis) the expiry date for standard ssl certificates on Windows servers? I’ve got scripts for Unix servers but my knowledge of Windows is limited to the desktop not Servers.
Any help would be gratefully appreciated.
Mark
(imported comment written by Bill.Ehardt)
I’ve done something in past prior to us using BigFix where I created a vbscript to part out the results of “certutil -v -store my” and write values to the registry.
I’d hope there is a better way (as the regex to parse name isn’t perfect) but I haven’t looked too much into it. Below is a sample of a webreport to read the data. Has Server, Last run time (of the certutil task), start date, end date, and name (not 100% perfect).
L4BNCLOG08 8/5/2011 5/20/2002 5/20/2022 CN=xxxxxxxxxxxxxxxxxxx
LINWWP1W 8/5/2011 10/29/2009 11/29/2010 CN=one.xxxxx.com
LINWWP1W 8/5/2011 11/8/2010 1/11/2012 CN=one.xxxxx.com
If nobody else has something I can send you the script. Just be aware it doesn’t work on windows 2000.
(imported comment written by SystemAdmin)
Thanks Bill. I’ve still got a lot of research to do but I may well take you up on your offer.