Project

General

Profile

Actions
Copy link

action #169357

open

monitoring+alerting for dashboard.qam.suse.de SSL certificate not deployed within expiry size:S

Added by okurz 16 days ago.

Status:
Workable
Priority:
Normal
Assignee:
-
Category:
Regressions/Crashes
Target version:
QA - Tools - Next
Start date:
2024-11-05
Due date:
% Done:

0%

Estimated time:
Tags:
grafana, infra, qem-dashboard, dehydrated, ssl

Description

Observation

The certificate for dashboard.qam.suse.de expired on 10/30/2024. See #169078 for resolution. This is about monitoring+alerting

Acceptance criteria

  • AC1: We are alerted if the externally available certificate on dashboard.qam.suse.de is valid only for a limited amount of days

Suggestions

  • Follow #169078 for the actual fix and then focus on monitoring
  • This was not covered by any alerts but thanks to a user reporting it
    • Apparently dashboard.qam.suse.de is not monitored on SSL Certificate Alerts so far? Shouldn't it be? Of course it's not monitored by that because qem-dashboard is not OSD salt controlled but deployed by ansible playbooks. We could consider to monitor the certificate validity from outside, e.g. from another host
  • Look how we currently monitor for OSD in https://gitlab.suse.de/openqa/salt-states-openqa

Related issues 1 (1 open0 closed)

Copied from openQA Infrastructure - action #169078: dashboard.qam.suse.de SSL certificate not deployed within expiry size:SWorkablerobert.richardson2024-11-29

Actions
Actions
Copy link
 #1

Updated by okurz 16 days ago

  • Copied from action #169078: dashboard.qam.suse.de SSL certificate not deployed within expiry size:S added
Actions
Copy link

Also available in: Atom PDF