Presence of a self-signed certificate on the firewall investigated and resolved within 24 hours.

Author: NETSCOUT

Goals: Maintain valid SSL certificates for all devices in the environment with a focus on internet-facing devices.

• Proactively detect and issue updated SSL certificates in order to eliminate lapses in trust for crucial servers in the environment.
• Identify communications with untrusted servers.
• Rectify devices with expired or soon-to-be expired SSL certificates.
• Gain visibility to the conversations being sent to servers utilizing self-signed certificates.

Process: nGeniusONE used to detect and report the status of all devices’ SSL Certificates based on inspection of packets sent across a monitored link.

• Run Certificate Monitor module against the interface corresponding to the desired monitored link.
• Alerts configured to send e-mails whenever self-signed certificates are detected.

Results: Immediate visibility to all SSL certificates for devices communicating across the link including count of certificates, days to expiration, TLS version for each device.