Skyline SSL Certificate Monitor for Cassandra with TLS

Solved111 viewsCassandra Skyline SSL Certificate Monitor SSL certificate TLS
1
0 Comments

Hi Dojo,

As far as I understand, we can use Skyline SSL Certificate Monitor | Catalog to see the state of a TLS certificate on a remote web page. That works for OpenSearch, because it has a web interface on https://node.domain.name:9200

Cassandra, on the contrary, is not shipped with a web interface, it only has a client port 9042 which is not a web API. I could not figure out how to make Certificate Monitor collect information from that port.

Can you advise how I can track information about TLS certificates on my Cassandra nodes?

Alexander Gorbunov [SLC] [DevOps Advocate] Selected answer as best 6 days ago

1 Answer

3
4.56K 1 Comment

The connector can be modified to use a TcpClient+SslStream instead of a HttpWebRequest to retrieve the remote certificate. This approach can work for any TLS-based communication, e.g. LDAP (TCP/636) or RDP (TCP/3389).

Alexander Gorbunov [SLC] [DevOps Advocate] Selected answer as best 6 days ago
Alexander Gorbunov [SLC] [DevOps Advocate] commented

Thank you Bert! Based on your suggestion, we have created an internal task to expand the functionality of the Certificate Monitor connector: https://collaboration.dataminer.services/task/256298
You are viewing 1 out of 1 answers, click here to view all answers.