Self Signed Certificate Health Monitor

Microsoft.Windows.10.SDNMonitoring.SelfSignedCertHealthMonitor (UnitMonitor)

This monitors the health of the self signed certificates used for authentication of Network Controller while communicating with a device.

Knowledge Base article:

Summary

This monitors the health of the self-signed certificates used for authentication of Network Controller while communicating with a device.

Causes

This monitor may raise an alert if the self-signed certificates used for authentication of Network Controller while communicating with a device are not properly configured, have expired or are about to expire.

Resolutions

Ensure that the self-signed certificates used for authentication of Network Controller while communicating with a device are valid and properly configured. Renew if required.

© 2016 Microsoft Corporation, all rights reserved

Element properties:

TargetSDNMonitoringMP.SDNMonitoring.NetworkControllerClusterNode
Parent MonitorSystem.Health.SecurityState
CategorySecurityHealth
EnabledTrue
Alert GenerateTrue
Alert SeverityMatchMonitorHealth
Alert PriorityNormal
Alert Auto ResolveTrue
Monitor TypeSelfSignedCertHealthMonitorType
RemotableTrue
AccessibilityPublic
Alert Message
Self Signed Certificate Health Alert
The self signed certificates with following thumbprints and names have encountered errors. Please find the error details below:

{0}

001: The certificate has expired. Please renew the certificate immediately.
002: The certificate is going to expire within {1} days. Please renew the certificate.
RunAsDefault

Source Code:

<UnitMonitor ID="Microsoft.Windows.10.SDNMonitoring.SelfSignedCertHealthMonitor" Accessibility="Public" Enabled="true" Target="SDNMonitoringMP.SDNMonitoring.NetworkControllerClusterNode" ParentMonitorID="Health!System.Health.SecurityState" Remotable="true" Priority="Normal" TypeID="SelfSignedCertHealthMonitorType" ConfirmDelivery="false">
<Category>SecurityHealth</Category>
<AlertSettings AlertMessage="Microsoft.Windows.10.SDNMonitoring.SelfSignedCertHealthMonitor.AlertMessage">
<AlertOnState>Warning</AlertOnState>
<AutoResolve>true</AutoResolve>
<AlertPriority>Normal</AlertPriority>
<AlertSeverity>MatchMonitorHealth</AlertSeverity>
<AlertParameters>
<AlertParameter1>$Data/Context/Property[@Name='errorId']$</AlertParameter1>
<AlertParameter2>$Data/Context/Property[@Name='remainDays']$</AlertParameter2>
</AlertParameters>
</AlertSettings>
<OperationalStates>
<OperationalState ID="AboutToExpire" MonitorTypeStateID="AboutToExpire" HealthState="Warning"/>
<OperationalState ID="NotExpired" MonitorTypeStateID="NotExpired" HealthState="Success"/>
<OperationalState ID="Expired" MonitorTypeStateID="Expired" HealthState="Error"/>
</OperationalStates>
<Configuration>
<IntervalSeconds>86400</IntervalSeconds>
<SyncTime/>
<ExpiryWarningDays>15</ExpiryWarningDays>
<Name>$Target/Property[Type="System!System.Entity"]/DisplayName$</Name>
</Configuration>
</UnitMonitor>