Use this page to configure the certificate expiration monitor.
To view this administrative console page, click Security > SSL certificate and key management > Manage certificate expiration. Attention: To see the changes to the Expiration checking fields, click Apply.
Specifies a threshold number of days during which the application warns specified individuals that a certificate is about to expire. For example, when the expiration monitor is run and the threshold is 30 days, if the current date is 30 days or less from the certificate expiration date, the certificate is flagged for notification. The application server can be configured to provide certification expiration notification through either e-mail or the message log file.
| Data type: | Integer |
| Default: | 30 days |
Specifies the notification type (such as e-mail or System Out) when an expiration monitor runs.
| Default: |
Specifies a new self-signed certificate be generated using the same certificate information if the expiration notification threshold is reached. The old certificate is replaced and uses the same alias. All old signers are managed by the key store configuration are also replaced. The system only replaces self-signed certificates.
| Default: | Enabled |
Specifies whether to completely remove old, self-signed certificates from the key store during a replace operation or leave them there under a renamed alias. If an old certificate is not deleted, the system renames the alias so that the new certificate can use the old alias, which might be referenced elsewhere in the configuration.
| Default: | Enabled |
Specifies the certificate monitor is active and will run as scheduled.
Scheduled time that the system checks for expired certificates.
You can type the scheduled time in hours and minutes, specify either A.M. or P.M., or 24-hour.
| Data type | Integer |
| Default: | 0, 0 |
| Range: | 1–12, 0–59 |
Indicates that you want to schedule a specific day of the week on which the expiration monitor runs. For example, it might run on Sunday.
| Default: | Disabled |
Specifies the day of the week on which the expiration monitor runs if Check on a specific day is selected.
| Default: | Sunday |
| Range: | Sunday, Monday, Tuesday, Wednesday, Thursday, Friday, Saturday |
Period of time between each schedule time to check for expired certificates or the interval between schedule checks.
| Default: | Daily |
| Range: | Daily, Weekly |
Specifies that you want to schedule a specific number of days between each run of the expiration monitor. The day of the week on which this occurs is not counted. For example, if you set the interval to check for expired certificates every seven days, the expiration monitor runs on day eight.
| Default: | Disabled |
Specifies the date for the next scheduled check. This allows the deployment manager to be stopped and restarted without resetting the date.