Triggering SNMP traps for SSL Certificates

Question

I've read a few different SOL articles and posts here on DevCentral on how to generate SNMP traps locally from the F5. We use Solarwinds for SNMP alert notification (not sure if that's relevant or not)
Last week, I ran the command tmsh run sys crypto check-cert ignore-large-cert-bundles enabled command on a guest with one expiring certificate and that triggered an email. I have the email. It's real.
I haven't generate that trap with that identical command on the same guest, or other guests. Here is the email and the output of /config/user_alert.conf file.

[username@f5-guest:/S1-green-P:Standby:In Sync] ~   cat  /config/user_alert.conf 
alert CERTIFICATE_EXPIRED "Certificate (.*) expired" {
snmptrap OID=".1.3.6.1.4.1.3375.2.4.0.300"

alert CERTIFICATE_WILL_EXPIRE "Certificate (.*) will expire" {
snmptrap OID=".1.3.6.1.4.1.3375.2.4.0.301"
}

zuke · Answer

It's not the F5. Traps were being sent, but the Solarwinds config changed. &nbsp;
Should've known. Sigh.&nbsp;
Was It the F5?&nbsp;

Forum Discussion

Triggering SNMP traps for SSL Certificates

1 Reply

Recent Discussions

Provisioning r2600 equipment

Block CBC

active/active Support Declarative Onboarding

Error while running ansible

URL

Related Content

Automating ACMEv2 Certificate Management on BIG-IP

Leveraging Ansible Rulebooks for Streamlined Event Triggers: Advantages and Benefits

Re: Management Certificate

Automate Let's Encrypt Certificates on BIG-IP

Custom SNMP Traps