Zadanie weryfikowania podpisu certyfikatu w systemie UNIX/Linux

Microsoft.Unix.Check.Certificate.Signature (Task)

To zadanie umożliwia wyświetlanie algorytmu podpisu podpisanego certyfikatu agenta. Może być ono pomocne w przypadku identyfikowania certyfikatów SHA1, które wymagają aktualizacji.

Element properties:

Target	Microsoft.Unix.Computer
Accessibility	Internal
Category	Custom
Enabled	True
Remotable	False
Timeout	12000

Member Modules:

ID	Module Type	TypeId	RunAs
PA	ProbeAction	Microsoft.Unix.WSMan.Invoke.VarPriv.ProbeAction	Default

Source Code:

<Task ID="Microsoft.Unix.Check.Certificate.Signature" Accessibility="Internal" Enabled="true" Target="Microsoft.Unix.Computer" Timeout="12000" Remotable="true">

  <Category>Custom</Category>

  <ProbeAction ID="PA" TypeID="Microsoft.Unix.WSMan.Invoke.VarPriv.ProbeAction">

    <TargetSystem>$Target/Property[Type="Microsoft.Unix.Computer"]/NetworkName$</TargetSystem>

    <UserName>$RunAs[Name="Microsoft.Unix.PrivilegedAccount"]/UserName$</UserName>

    <Password>$RunAs[Name="Microsoft.Unix.PrivilegedAccount"]/Password$</Password>

    <Uri>http://schemas.microsoft.com/wbem/wscim/1/cim-schema/2/SCX_OperatingSystem?__cimnamespace=root/scx</Uri>

    <Selector/>

    <InvokeAction>ExecuteShellCommand</InvokeAction>

    <Input>&lt;p:ExecuteShellCommand_INPUT xmlns:p="http://schemas.microsoft.com/wbem/wscim/1/cim-schema/2/SCX_OperatingSystem"&gt;&lt;p:command&gt;openssl x509 -noout -text -in /etc/opt/microsoft/scx/ssl/scx.pem | grep 'Signature Algorithm'&lt;/p:command&gt;&lt;p:timeout&gt;120&lt;/p:timeout&gt;&lt;/p:ExecuteShellCommand_INPUT&gt;</Input>

    <TimeOutInMS>12000</TimeOutInMS>

  </ProbeAction>

</Task>