FAQ
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

We are seeing that the SSL certificate of the cluster hosts expire in a few days.

Go to solution
jose-antonio_ra
Inactive

‎03 Sep 2019 01:41 AM - last edited on ‎28 Sep 2022 03:08 AM by Community Team

Hi all.

We have a doubt. We are seeing that the SSL certificate of the cluster hosts expire in a few days.

 

What does it affect if it expires?

Can monitoring data be lost?

Or Is it renewed automatically?

Is there anything we should keep in mind before the expiration date?

 

Thanks in advance.

Jose A

 

0 Kudos
Reply
8 REPLIES 8

Go to solution
Radoslaw_Szulgo
Dynatrace Guru
Dynatrace Guru

‎03 Sep 2019 01:52 AM

Certificate should be automatically renewed. I'll check the details and update you on that.

If a certificate expired you will see the warning in the browser when accessing UI. Monitoring should not be affected.


Senior Product Manager,
Dynatrace Managed expert
0 Kudos
Reply

Go to solution
jose-antonio_ra
Inactive
In response to Radoslaw_Szulgo

‎03 Sep 2019 02:19 AM

Thanks you Radoslaw.

Can you confirm the automatic renewal?

Is there any way to renew it manually before it expires? and thus avoid problems...


Regards


0 Kudos
Reply

Go to solution
Julius_Loman
DynaMight Legend
DynaMight Legend
In response to jose-antonio_ra

‎03 Sep 2019 03:27 AM

Dynatrace by default uses certificates from Letsencrypt, unless you are using your own certs. They are normally valid for 3 months. I think the renewal process starts about a week before the expiration.

You don't need to worry about that. Unless you lose the connectivity to mission control, the certificates will be renewed automatically.


Certified Dynatrace Master | Alanata a.s., Slovakia, Dynatrace Master Partner
Reply

Go to solution
Radoslaw_Szulgo
Dynatrace Guru
Dynatrace Guru
In response to jose-antonio_ra

‎03 Sep 2019 03:30 AM

It expires on October 26th - which is in 1.5 month ahead. Certificate will be refreshed 14 days before an expiration time.


Senior Product Manager,
Dynatrace Managed expert
0 Kudos
Reply

Go to solution
Radoslaw_Szulgo
Dynatrace Guru
Dynatrace Guru
In response to jose-antonio_ra

‎03 Sep 2019 03:33 AM

Ah and there's no way to refresh that manually.


Senior Product Manager,
Dynatrace Managed expert
0 Kudos
Reply

Go to solution
Julius_Loman
DynaMight Legend
DynaMight Legend
In response to Radoslaw_Szulgo

‎03 Sep 2019 04:10 AM

Actually there is 🙂 You need to disable and then re-enable the certificate management. New certificates will be generated. However, this may result in broken communication (for UI clients) during the time the certificate management is disabled (selfsign certificate will be used as far as I remember unless you specify your own one).
So this is definitely not a recommended way to do refresh certificates.


Certified Dynatrace Master | Alanata a.s., Slovakia, Dynatrace Master Partner
0 Kudos
Reply

Go to solution
Radoslaw_Szulgo
Dynatrace Guru
Dynatrace Guru
In response to Julius_Loman

‎03 Sep 2019 04:17 AM

I'm afraid that is not true. When you do it like that, the previous certs (actually keystore) are reverted.
Senior Product Manager,
Dynatrace Managed expert
0 Kudos
Reply

Go to solution
Julius_Loman
DynaMight Legend
DynaMight Legend
In response to Radoslaw_Szulgo

‎03 Sep 2019 06:01 AM

Last time I've tried this the certs were regenerated. But it could be a coincidence anyway.


Certified Dynatrace Master | Alanata a.s., Slovakia, Dynatrace Master Partner
0 Kudos
Reply
Ask a question