UNIX/Linux Verify Certificate Signature Task
Microsoft.Unix.Check.Certificate.Signature (Task)
This Task is used to display the Signature algorithm of the agent's signed certificate. This can be helpful in identifying SHA1 certificates that require an update.
Element properties: Member Modules:
Source Code: <Task ID="Microsoft.Unix.Check.Certificate.Signature" Accessibility="Internal" Enabled="true" Target="Microsoft.Unix.Computer" Timeout="12000" Remotable="true">
<Category>Custom</Category>
<ProbeAction ID="PA" TypeID="Microsoft.Unix.WSMan.Invoke.VarPriv.ProbeAction">
<TargetSystem>$Target/Property[Type="Microsoft.Unix.Computer"]/NetworkName$</TargetSystem>
<UserName>$RunAs[Name="Microsoft.Unix.PrivilegedAccount"]/UserName$</UserName>
<Password>$RunAs[Name="Microsoft.Unix.PrivilegedAccount"]/Password$</Password>
<Uri>http://schemas.microsoft.com/wbem/wscim/1/cim-schema/2/SCX_OperatingSystem?__cimnamespace=root/scx</Uri>
<Selector/>
<InvokeAction>ExecuteShellCommand</InvokeAction>
<Input><p:ExecuteShellCommand_INPUT xmlns:p="http://schemas.microsoft.com/wbem/wscim/1/cim-schema/2/SCX_OperatingSystem"><p:command>openssl x509 -noout -text -in /etc/opt/microsoft/scx/ssl/scx.pem | grep 'Signature Algorithm'</p:command><p:timeout>120</p:timeout></p:ExecuteShellCommand_INPUT></Input>
<TimeOutInMS>12000</TimeOutInMS>
</ProbeAction>
</Task>