We Use Cookies

We use cookies to ensure that we give you the best experience on our website. If you continue to use this site we will assume that you are happy with this.

See our cookie policy.

Automation Action: Check SSL Certificate

Check the validity and expiry date for the SSL certificate used on any host/URL.

Built-In Action

Checks the validity and expiry date for the SSL certificate used on any host/URL.

This action can be used to monitor the SSL certificates used on your web sites. For example, your Automation could send a notification email or SMS when a certificate is about to expire.

Specify the Host Name. This would normally be the root web address, eg: thinkautomation.com. If you specify a full URL then the host name will be extracted. Use %variable% replacements if required. Specify the Port. This would normally be 443.

You can specify the Connection Timeout (in seconds). This is the number of seconds to wait for the initial connection.

In the Expiry Days entry, specify the number of days before the certificate expiry date where the status should be set to 'expiring'.

Select the variable to receive the certificate status from the Assign Certificate Status to list. The status will be set to valid, invalid, expired, expiring, none or an error message:

  • valid - the certificate is valid and not about to expire within the Expiry Days.
  • invalid - the certificate is invalid.
  • expired - the certificate has expired.
  • expiring - the certificate is about to expire (within the Expiry Days).
  • none - no certificates.
  • error: - if the host cannot be reached.

If the host cannot be reached, then the status will be set to 'error: ' (eg: 'error: DNS lookup failed').

Select the variable to receive the expiry date from the Assign Expiry Date To list.

The complete certificate chain can also be assigned to a variable in Json format:


[
  {
    "subject": "CN=mydomain.com",
    "issuer": "C=US, O=DigiCert Inc, OU=www.digicert.com, CN=RapidSSL TLS RSA CA G1",
    "validFrom": "2023-11-02T00:00:00",
    "validTo": "2024-11-01T23:59:59",
    "usage": "serverAuth,clientAuth",
    "root": false
  },
  {
    "subject": "C=US, O=DigiCert Inc, OU=www.digicert.com, CN=RapidSSL TLS RSA CA G1",
    "issuer": "C=US, O=DigiCert Inc, OU=www.digicert.com, CN=DigiCert Global Root G2",
    "validFrom": "2017-11-02T12:24:33",
    "validTo": "2027-11-02T12:24:33",
    "usage": "serverAuth,clientAuth",
    "root": false
  },
  {
    "subject": "C=US, O=DigiCert Inc, OU=www.digicert.com, CN=DigiCert Global Root G2",
    "issuer": "C=US, O=DigiCert Inc, OU=www.digicert.com, CN=DigiCert Global Root G2",
    "validFrom": "2013-08-01T12:00:00",
    "validTo": "2038-01-15T12:00:00",
    "usage": "",
    "root": true
  }
]              

Select the variable to receive the Json from the Assign Json to list. This is optional, but allows you to examine the certificate chain further in your Automation.