Home Esplora Aiuto
Registrati Accedi
shixiong
/
okd
1
0
Forka 0
File Problemi 0 Pull Requests 0 Wiki
Albero (Tree): f7db81c1d1
Rami (Branch) Tag
okd
/
roles
/
openshift_certificate_expiry
/
examples
/
cert-expiry-report.html

cert-expiry-report.html 14 KB
Cronologia Originale

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396 
  1. <!DOCTYPE html>
    2. 

  2. <html>
    3. 

  3.   <head>
    4. 

  4.     <meta charset="UTF-8" />
    5. 

  5.     <title>OCP Certificate Expiry Report</title>
    6. 

  6.         <link rel="stylesheet" href="https://maxcdn.bootstrapcdn.com/bootstrap/3.3.7/css/bootstrap.min.css" />
    7. 

  7.     <link href="https://fonts.googleapis.com/css?family=Source+Sans+Pro:300,400,700" rel="stylesheet" />
    8. 

  8.     <style type="text/css">
    9. 

  9.       body {
    10. 

  10.       font-family: 'Source Sans Pro', sans-serif;
    11. 

  11.       margin-left: 50px;
    12. 

  12.       margin-right: 50px;
    13. 

  13.       margin-bottom: 20px;
    14. 

  14.       padding-top: 70px;
    15. 

  15.       }
    16. 

  16.       table {
    17. 

  17.       border-collapse: collapse;
    18. 

  18.       margin-bottom: 20px;
    19. 

  19.       }
    20. 

  20.       table, th, td {
    21. 

  21.       border: 1px solid black;
    22. 

  22.       }
    23. 

  23.       th, td {
    24. 

  24.       padding: 5px;
    25. 

  25.       }
    26. 

  26.       .cert-kind {
    27. 

  27.       margin-top: 5px;
    28. 

  28.       margin-bottom: 5px;
    29. 

  29.       }
    30. 

  30.       footer {
    31. 

  31.       font-size: small;
    32. 

  32.       text-align: center;
    33. 

  33.       }
    34. 

  34.       tr.odd {
    35. 

  35.       background-color: #f2f2f2;
    36. 

  36.       }
    37. 

  37.     </style>
    38. 

  38.   </head>
    39. 

  39.   <body>
    40. 

  40.     <nav class="navbar navbar-default navbar-fixed-top">
    41. 

  41.       <div class="container-fluid">
    42. 

  42.         <div class="navbar-header">
    43. 

  43.           <a class="navbar-brand" href="#">OCP Certificate Expiry Report</a>
    44. 

  44.         </div>
    45. 

  45.         <div class="collapse navbar-collapse">
    46. 

  46.           <p class="navbar-text navbar-right">
    47. 

  47. 	    <button>
    48. 

  48. 	      <a href="https://docs.openshift.com/container-platform/latest/install_config/redeploying_certificates.html"
    49. 

  49. 		 target="_blank"
    50. 

  50. 		 class="navbar-link">
    51. 

  51. 		 <i class="glyphicon glyphicon-book"></i> Redeploying Certificates
    52. 

  52. 	      </a>
    53. 

  53. 	    </button>
    54. 

  54. 	    <button>
    55. 

  55. 	      <a href="https://github.com/openshift/openshift-ansible/tree/master/roles/openshift_certificate_expiry"
    56. 

  56. 		 target="_blank"
    57. 

  57. 		 class="navbar-link">
    58. 

  58. 		 <i class="glyphicon glyphicon-book"></i> Expiry Role Documentation
    59. 

  59. 	      </a>
    60. 

  60. 	    </button>
    61. 

  61. 	  </p>
    62. 

  62.         </div>
    63. 

  63.       </div>
    64. 

  64.     </nav>
    65. 

  65. 

  66.               <h1>m01.example.com</h1>
    67. 

  67. 

  68.       <p>
    69. 

  69.         Checked 12 total certificates. Expired/Warning/OK: 0/10/2. Warning window: 1500 days
    70. 

  70.       </p>
    71. 

  71.       <ul>
    72. 

  72.         <li><b>Expirations checked at:</b> 2017-01-17 10:36:25.230920</li>
    73. 

  73.         <li><b>Warn after date:</b> 2021-02-25 10:36:25.230920</li>
    74. 

  74.       </ul>
    75. 

  75. 

  76.       <table border="1" width="100%">
    77. 

  77.         <tr>
    78. 

  78.             <th colspan="7" style="text-align:center"><h2 class="cert-kind">ocp_certs</h2></th>
    79. 

  79.           </tr>
    80. 

  80. 

  81.           <tr>
    82. 

  82.             <th>&nbsp;</th>
    83. 

  83.             <th style="width:33%">Certificate Common/Alt Name(s)</th>
    84. 

  84. 	    <td>Serial</th>
    85. 

  85.             <th>Health</th>
    86. 

  86.             <th>Days Remaining</th>
    87. 

  87.             <th>Expiration Date</th>
    88. 

  88.             <th>Path</th>
    89. 

  89.           </tr>
    90. 

  90. 

  91. 

  92.             <tr class="odd">
    93. 

  93.               <td style="text-align:center"><i class="glyphicon glyphicon-alert"></i></td>
    94. 

  94.               <td style="width:33%">CN:172.30.0.1, DNS:kubernetes, DNS:kubernetes.default, DNS:kubernetes.default.svc, DNS:kubernetes.default.svc.cluster.local, DNS:m01.example.com, DNS:openshift, DNS:openshift.default, DNS:openshift.default.svc, DNS:openshift.default.svc.cluster.local, DNS:172.30.0.1, DNS:192.168.124.148, IP Address:172.30.0.1, IP Address:192.168.124.148</td>
    95. 

  95. 	      <td><code>int(4)/hex(0x4)</code></td>
    96. 

  96.               <td>warning</td>
    97. 

  97.               <td>722</td>
    98. 

  98.               <td>2019-01-09 17:00:02</td>
    99. 

  99.               <td>/etc/origin/master/master.server.crt</td>
    100. 

  100.             </tr>
    101. 

  101. 

  102.             <tr class="even">
    103. 

  103.               <td style="text-align:center"><i class="glyphicon glyphicon-alert"></i></td>
    104. 

  104.               <td style="width:33%">CN:192.168.124.148, DNS:m01.example.com, DNS:192.168.124.148, IP Address:192.168.124.148</td>
    105. 

  105. 	      <td><code>int(12)/hex(0xc)</code></td>
    106. 

  106.               <td>warning</td>
    107. 

  107.               <td>722</td>
    108. 

  108.               <td>2019-01-09 17:03:29</td>
    109. 

  109.               <td>/etc/origin/node/server.crt</td>
    110. 

  110.             </tr>
    111. 

  111. 

  112.             <tr class="odd">
    113. 

  113.               <td style="text-align:center"><i class="glyphicon glyphicon-ok"></i></td>
    114. 

  114.               <td style="width:33%">CN:openshift-signer@1483981200</td>
    115. 

  115. 	      <td><code>int(1)/hex(0x1)</code></td>
    116. 

  116.               <td>ok</td>
    117. 

  117.               <td>1817</td>
    118. 

  118.               <td>2022-01-08 17:00:01</td>
    119. 

  119.               <td>/etc/origin/master/ca.crt</td>
    120. 

  120.             </tr>
    121. 

  121. 

  122.             <tr class="even">
    123. 

  123.               <td style="text-align:center"><i class="glyphicon glyphicon-ok"></i></td>
    124. 

  124.               <td style="width:33%">CN:openshift-signer@1483981200</td>
    125. 

  125. 	      <td><code>int(1)/hex(0x1)</code></td>
    126. 

  126.               <td>ok</td>
    127. 

  127.               <td>1817</td>
    128. 

  128.               <td>2022-01-08 17:00:01</td>
    129. 

  129.               <td>/etc/origin/node/ca.crt</td>
    130. 

  130.             </tr>
    131. 

  131.                             <tr>
    132. 

  132.             <th colspan="7" style="text-align:center"><h2 class="cert-kind">etcd</h2></th>
    133. 

  133.           </tr>
    134. 

  134. 

  135.           <tr>
    136. 

  136.             <th>&nbsp;</th>
    137. 

  137.             <th style="width:33%">Certificate Common/Alt Name(s)</th>
    138. 

  138. 	    <td>Serial</th>
    139. 

  139.             <th>Health</th>
    140. 

  140.             <th>Days Remaining</th>
    141. 

  141.             <th>Expiration Date</th>
    142. 

  142.             <th>Path</th>
    143. 

  143.           </tr>
    144. 

  144. 

  145. 

  146.             <tr class="odd">
    147. 

  147.               <td style="text-align:center"><i class="glyphicon glyphicon-alert"></i></td>
    148. 

  148.               <td style="width:33%">CN:172.30.0.1, DNS:kubernetes, DNS:kubernetes.default, DNS:kubernetes.default.svc, DNS:kubernetes.default.svc.cluster.local, DNS:m01.example.com, DNS:openshift, DNS:openshift.default, DNS:openshift.default.svc, DNS:openshift.default.svc.cluster.local, DNS:172.30.0.1, DNS:192.168.124.148, IP Address:172.30.0.1, IP Address:192.168.124.148</td>
    149. 

  149. 	      <td><code>int(7)/hex(0x7)</code></td>
    150. 

  150.               <td>warning</td>
    151. 

  151.               <td>722</td>
    152. 

  152.               <td>2019-01-09 17:00:03</td>
    153. 

  153.               <td>/etc/origin/master/etcd.server.crt</td>
    154. 

  154.             </tr>
    155. 

  155.                             <tr>
    156. 

  156.             <th colspan="7" style="text-align:center"><h2 class="cert-kind">kubeconfigs</h2></th>
    157. 

  157.           </tr>
    158. 

  158. 

  159.           <tr>
    160. 

  160.             <th>&nbsp;</th>
    161. 

  161.             <th style="width:33%">Certificate Common/Alt Name(s)</th>
    162. 

  162. 	    <td>Serial</th>
    163. 

  163.             <th>Health</th>
    164. 

  164.             <th>Days Remaining</th>
    165. 

  165.             <th>Expiration Date</th>
    166. 

  166.             <th>Path</th>
    167. 

  167.           </tr>
    168. 

  168. 

  169. 

  170.             <tr class="odd">
    171. 

  171.               <td style="text-align:center"><i class="glyphicon glyphicon-alert"></i></td>
    172. 

  172.               <td style="width:33%">O:system:nodes, CN:system:node:m01.example.com</td>
    173. 

  173. 	      <td><code>int(11)/hex(0xb)</code></td>
    174. 

  174.               <td>warning</td>
    175. 

  175.               <td>722</td>
    176. 

  176.               <td>2019-01-09 17:03:28</td>
    177. 

  177.               <td>/etc/origin/node/system:node:m01.example.com.kubeconfig</td>
    178. 

  178.             </tr>
    179. 

  179. 

  180.             <tr class="even">
    181. 

  181.               <td style="text-align:center"><i class="glyphicon glyphicon-alert"></i></td>
    182. 

  182.               <td style="width:33%">O:system:cluster-admins, CN:system:admin</td>
    183. 

  183. 	      <td><code>int(8)/hex(0x8)</code></td>
    184. 

  184.               <td>warning</td>
    185. 

  185.               <td>722</td>
    186. 

  186.               <td>2019-01-09 17:00:03</td>
    187. 

  187.               <td>/etc/origin/master/admin.kubeconfig</td>
    188. 

  188.             </tr>
    189. 

  189. 

  190.             <tr class="odd">
    191. 

  191.               <td style="text-align:center"><i class="glyphicon glyphicon-alert"></i></td>
    192. 

  192.               <td style="width:33%">O:system:masters, CN:system:openshift-master</td>
    193. 

  193. 	      <td><code>int(3)/hex(0x3)</code></td>
    194. 

  194.               <td>warning</td>
    195. 

  195.               <td>722</td>
    196. 

  196.               <td>2019-01-09 17:00:02</td>
    197. 

  197.               <td>/etc/origin/master/openshift-master.kubeconfig</td>
    198. 

  198.             </tr>
    199. 

  199. 

  200.             <tr class="even">
    201. 

  201.               <td style="text-align:center"><i class="glyphicon glyphicon-alert"></i></td>
    202. 

  202.               <td style="width:33%">O:system:routers, CN:system:openshift-router</td>
    203. 

  203. 	      <td><code>int(9)/hex(0x9)</code></td>
    204. 

  204.               <td>warning</td>
    205. 

  205.               <td>722</td>
    206. 

  206.               <td>2019-01-09 17:00:03</td>
    207. 

  207.               <td>/etc/origin/master/openshift-router.kubeconfig</td>
    208. 

  208.             </tr>
    209. 

  209. 

  210.             <tr class="odd">
    211. 

  211.               <td style="text-align:center"><i class="glyphicon glyphicon-alert"></i></td>
    212. 

  212.               <td style="width:33%">O:system:registries, CN:system:openshift-registry</td>
    213. 

  213. 	      <td><code>int(10)/hex(0xa)</code></td>
    214. 

  214.               <td>warning</td>
    215. 

  215.               <td>722</td>
    216. 

  216.               <td>2019-01-09 17:00:03</td>
    217. 

  217.               <td>/etc/origin/master/openshift-registry.kubeconfig</td>
    218. 

  218.             </tr>
    219. 

  219.                             <tr>
    220. 

  220.             <th colspan="7" style="text-align:center"><h2 class="cert-kind">router</h2></th>
    221. 

  221.           </tr>
    222. 

  222. 

  223.           <tr>
    224. 

  224.             <th>&nbsp;</th>
    225. 

  225.             <th style="width:33%">Certificate Common/Alt Name(s)</th>
    226. 

  226. 	    <td>Serial</th>
    227. 

  227.             <th>Health</th>
    228. 

  228.             <th>Days Remaining</th>
    229. 

  229.             <th>Expiration Date</th>
    230. 

  230.             <th>Path</th>
    231. 

  231.           </tr>
    232. 

  232. 

  233. 

  234.             <tr class="odd">
    235. 

  235.               <td style="text-align:center"><i class="glyphicon glyphicon-alert"></i></td>
    236. 

  236.               <td style="width:33%">CN:router.default.svc, DNS:router.default.svc, DNS:router.default.svc.cluster.local</td>
    237. 

  237. 	      <td><code>int(5050662940948454653)/hex(0x46178f2f6b765cfd)</code></td>
    238. 

  238.               <td>warning</td>
    239. 

  239.               <td>722</td>
    240. 

  240.               <td>2019-01-09 17:05:46</td>
    241. 

  241.               <td>/api/v1/namespaces/default/secrets/router-certs</td>
    242. 

  242.             </tr>
    243. 

  243.                             <tr>
    244. 

  244.             <th colspan="7" style="text-align:center"><h2 class="cert-kind">registry</h2></th>
    245. 

  245.           </tr>
    246. 

  246. 

  247.           <tr>
    248. 

  248.             <th>&nbsp;</th>
    249. 

  249.             <th style="width:33%">Certificate Common/Alt Name(s)</th>
    250. 

  250. 	    <td>Serial</th>
    251. 

  251.             <th>Health</th>
    252. 

  252.             <th>Days Remaining</th>
    253. 

  253.             <th>Expiration Date</th>
    254. 

  254.             <th>Path</th>
    255. 

  255.           </tr>
    256. 

  256. 

  257. 

  258.             <tr class="odd">
    259. 

  259.               <td style="text-align:center"><i class="glyphicon glyphicon-alert"></i></td>
    260. 

  260.               <td style="width:33%">CN:172.30.242.251, DNS:docker-registry-default.router.default.svc.cluster.local, DNS:docker-registry.default.svc.cluster.local, DNS:172.30.242.251, IP Address:172.30.242.251</td>
    261. 

  261. 	      <td><code>int(13)/hex(0xd)</code></td>
    262. 

  262.               <td>warning</td>
    263. 

  263.               <td>722</td>
    264. 

  264.               <td>2019-01-09 17:05:54</td>
    265. 

  265.               <td>/api/v1/namespaces/default/secrets/registry-certificates</td>
    266. 

  266.             </tr>
    267. 

  267.                                           </table>
    268. 

  268.       <hr />
    269. 

  269.           <h1>n01.example.com</h1>
    270. 

  270. 

  271.       <p>
    272. 

  272.         Checked 3 total certificates. Expired/Warning/OK: 0/2/1. Warning window: 1500 days
    273. 

  273.       </p>
    274. 

  274.       <ul>
    275. 

  275.         <li><b>Expirations checked at:</b> 2017-01-17 10:36:25.217103</li>
    276. 

  276.         <li><b>Warn after date:</b> 2021-02-25 10:36:25.217103</li>
    277. 

  277.       </ul>
    278. 

  278. 

  279.       <table border="1" width="100%">
    280. 

  280.         <tr>
    281. 

  281.             <th colspan="7" style="text-align:center"><h2 class="cert-kind">ocp_certs</h2></th>
    282. 

  282.           </tr>
    283. 

  283. 

  284.           <tr>
    285. 

  285.             <th>&nbsp;</th>
    286. 

  286.             <th style="width:33%">Certificate Common/Alt Name(s)</th>
    287. 

  287. 	    <td>Serial</th>
    288. 

  288.             <th>Health</th>
    289. 

  289.             <th>Days Remaining</th>
    290. 

  290.             <th>Expiration Date</th>
    291. 

  291.             <th>Path</th>
    292. 

  292.           </tr>
    293. 

  293. 

  294. 

  295.             <tr class="odd">
    296. 

  296.               <td style="text-align:center"><i class="glyphicon glyphicon-alert"></i></td>
    297. 

  297.               <td style="width:33%">CN:192.168.124.11, DNS:n01.example.com, DNS:192.168.124.11, IP Address:192.168.124.11</td>
    298. 

  298. 	      <td><code>int(12)/hex(0xc)</code></td>
    299. 

  299.               <td>warning</td>
    300. 

  300.               <td>722</td>
    301. 

  301.               <td>2019-01-09 17:03:29</td>
    302. 

  302.               <td>/etc/origin/node/server.crt</td>
    303. 

  303.             </tr>
    304. 

  304. 

  305.             <tr class="even">
    306. 

  306.               <td style="text-align:center"><i class="glyphicon glyphicon-ok"></i></td>
    307. 

  307.               <td style="width:33%">CN:openshift-signer@1483981200</td>
    308. 

  308. 	      <td><code>int(1)/hex(0x1)</code></td>
    309. 

  309.               <td>ok</td>
    310. 

  310.               <td>1817</td>
    311. 

  311.               <td>2022-01-08 17:00:01</td>
    312. 

  312.               <td>/etc/origin/node/ca.crt</td>
    313. 

  313.             </tr>
    314. 

  314.                             <tr>
    315. 

  315.             <th colspan="7" style="text-align:center"><h2 class="cert-kind">etcd</h2></th>
    316. 

  316.           </tr>
    317. 

  317. 

  318.           <tr>
    319. 

  319.             <th>&nbsp;</th>
    320. 

  320.             <th style="width:33%">Certificate Common/Alt Name(s)</th>
    321. 

  321. 	    <td>Serial</th>
    322. 

  322.             <th>Health</th>
    323. 

  323.             <th>Days Remaining</th>
    324. 

  324.             <th>Expiration Date</th>
    325. 

  325.             <th>Path</th>
    326. 

  326.           </tr>
    327. 

  327. 

  328.                             <tr>
    329. 

  329.             <th colspan="7" style="text-align:center"><h2 class="cert-kind">kubeconfigs</h2></th>
    330. 

  330.           </tr>
    331. 

  331. 

  332.           <tr>
    333. 

  333.             <th>&nbsp;</th>
    334. 

  334.             <th style="width:33%">Certificate Common/Alt Name(s)</th>
    335. 

  335. 	    <td>Serial</th>
    336. 

  336.             <th>Health</th>
    337. 

  337.             <th>Days Remaining</th>
    338. 

  338.             <th>Expiration Date</th>
    339. 

  339.             <th>Path</th>
    340. 

  340.           </tr>
    341. 

  341. 

  342. 

  343.             <tr class="odd">
    344. 

  344.               <td style="text-align:center"><i class="glyphicon glyphicon-alert"></i></td>
    345. 

  345.               <td style="width:33%">O:system:nodes, CN:system:node:n01.example.com</td>
    346. 

  346. 	      <td><code>int(11)/hex(0xb)</code></td>
    347. 

  347.               <td>warning</td>
    348. 

  348.               <td>722</td>
    349. 

  349.               <td>2019-01-09 17:03:28</td>
    350. 

  350.               <td>/etc/origin/node/system:node:n01.example.com.kubeconfig</td>
    351. 

  351.             </tr>
    352. 

  352.                             <tr>
    353. 

  353.             <th colspan="7" style="text-align:center"><h2 class="cert-kind">router</h2></th>
    354. 

  354.           </tr>
    355. 

  355. 

  356.           <tr>
    357. 

  357.             <th>&nbsp;</th>
    358. 

  358.             <th style="width:33%">Certificate Common/Alt Name(s)</th>
    359. 

  359. 	    <td>Serial</th>
    360. 

  360.             <th>Health</th>
    361. 

  361.             <th>Days Remaining</th>
    362. 

  362.             <th>Expiration Date</th>
    363. 

  363.             <th>Path</th>
    364. 

  364.           </tr>
    365. 

  365. 

  366.                             <tr>
    367. 

  367.             <th colspan="7" style="text-align:center"><h2 class="cert-kind">registry</h2></th>
    368. 

  368.           </tr>
    369. 

  369. 

  370.           <tr>
    371. 

  371.             <th>&nbsp;</th>
    372. 

  372.             <th style="width:33%">Certificate Common/Alt Name(s)</th>
    373. 

  373. 	    <td>Serial</th>
    374. 

  374.             <th>Health</th>
    375. 

  375.             <th>Days Remaining</th>
    376. 

  376.             <th>Expiration Date</th>
    377. 

  377.             <th>Path</th>
    378. 

  378.           </tr>
    379. 

  379. 

  380.                                           </table>
    381. 

  381.       <hr />
    382. 

  382. 

  383.     <footer>
    384. 

  384.       <p>
    385. 

  385.         Expiration report generated by
    386. 

  386.         the <a href="https://github.com/openshift/openshift-ansible"
    387. 

  387.         target="_blank">openshift-ansible</a>
    388. 

  388. 	<a href="https://github.com/openshift/openshift-ansible/tree/master/roles/openshift_certificate_expiry"
    389. 

  389. 	   target="_blank">certificate expiry</a> role.
    390. 

  390.       </p>
    391. 

  391.       <p>
    392. 

  392.         Status icons from bootstrap/glyphicon
    393. 

  393.       </p>
    394. 

  394.     </footer>
    395. 

  395.   </body>
    396. 

  396. </html>
    397.