nrpe check ipsec certificates

« previous next »

Print

Pages: [1]

Author Topic: nrpe check ipsec certificates (Read 856 times)

GaardenZwerch

Full Member
Posts: 104
Karma: 2

nrpe check ipsec certificates

« on: June 20, 2022, 04:47:51 pm »

Hi,
I would like to include an nrpe check to warn me before cerrtificates in /usr/local/etc/ipsec.d/certs expire.
However those files are not readable to the nagios user and a sudoers entry to the liking of

CHMODIPSECCERTS = /bin/chmod a+r /usr/local/etc/ipsec.d/certs/*is not working (and not desirable). Any other ideas how I could do this?
Thanks a lot
Frank

Logged

GaardenZwerch

Full Member
Posts: 104
Karma: 2

[SOLVED] Re: nrpe check ipsec certificates

« Reply #1 on: June 21, 2022, 08:50:55 am »

Hi again,
in case anyone is interested, I circumvented this by running the entire script as root
(edit: open for comments, though :-) )

#!/usr/local/bin/perl -w
#copyto:/usr/local/libexec/nagios/check_ipsec_certs

#re-run as root if we are not root
if ($ENV{USER} ne 'root'){
    my $CMD='/usr/local/bin/sudo /usr/local/libexec/nagios/check_ipsec_certs';
    exec $CMD;     
}
#do the actual checking...

« Last Edit: June 21, 2022, 09:03:59 am by GaardenZwerch »

Logged

Print

Pages: [1]

« previous next »