Monitoring the SSP IdP
Keith Wessel
Hi, all,
Our proxy IdP is about to go into production, and I want to get our Nagios instance making sure to keep tabs on it. I know I could write something fancy that logs in to some SP through the IdP, but I’m looking for something simple.
I don’t see any kind of status or health check URL in SSP that simply confirms that PHP and the SSP codebase is behaving. Is there something I’m missing? Or any suggestions on something in SSP that would suffice for that?
My one thought at this point is to just have Nagios call the IdP’s metadata URL and confirm that it’s getting back a 200.
Thanks for any suggestions,
Keith
Mark Boyce
Sent from my iPhone
--
You received this message because you are subscribed to the Google Groups "SimpleSAMLphp" group.
To unsubscribe from this group and stop receiving emails from it, send an email to simplesamlph...@googlegroups.com.
To post to this group, send email to simple...@googlegroups.com.
Visit this group at https://groups.google.com/group/simplesamlphp.
For more options, visit https://groups.google.com/d/optout.
Federatieve Services - GDI
Hey Keith,
I’ve been giving this some thought over the last few months and recently started experimenting with a module that can perform a number of checks (test authsources, check certificate validity) and is able to return either a human readable result-page or an XML that can be parsed by any monitoring system. My usecase would be MS SCOM. Eventhough this experiment is not even near beta-status, perhaps we can share some thoughts and team up on this?
- Tim
--
You received this message because you are subscribed to the Google Groups "SimpleSAMLphp" group.
To unsubscribe from this group and stop receiving emails from it, send an email to
simplesamlph...@googlegroups.com.
To post to this group, send email to
simple...@googlegroups.com.
Visit this group at https://groups.google.com/group/simplesamlphp.
For more options, visit https://groups.google.com/d/optout.
Dit bericht kan informatie bevatten die niet voor u is bestemd. Indien u niet de geadresseerde bent of dit bericht abusievelijk aan u is toegezonden, wordt u verzocht dat aan de afzender te melden en het bericht te verwijderen. De Staat aanvaardt geen aansprakelijkheid voor schade, van welke aard ook, die verband houdt met risico's verbonden aan het elektronisch verzenden van berichten.
This message may contain information that is not intended for you. If you are not the addressee or if this message was sent to you by mistake, you are requested to inform the sender and delete the message. The State accepts no liability for damage of any kind resulting from the risks inherent in the electronic transmission of messages.
pat...@cirrusidentity.com
Tim van Dijen
It's been a while, but I've actually managed to develop an SSP-module over the last year that can do lots of health checking.
It can do certificate checks on endpoints, test connectivity towards authsources, etc. and can output in XML and with HTTP status codes for use in 3rd party monitoring software.
I personally use it to monitor a dozen instances of SSP and then have all their stats in one SCOM dashboard.
Please have a look: https://github.com/tvdijen/simplesamlphp-module-monitor
- Tim
Op woensdag 22 februari 2017 04:03:31 UTC+1 schreef Keith Wessel: