Tag Archives: monitor

On installe Monit apt-get install monit Configuration du fichier de configuration monit nano /etc/monit/monitrc set daemon 60 set mailserver localhost, set mail-format { from: monit@exatek.fr subject:$HOST – Monit : $EVENT $SERVICE } set alert admin@exatek.fr set httpd port 10000 and SSL ENABLE PEMFILE /etc/ssl/certs/monit.pem allow admin:monitpass Génération certificat et clé privée nano /etc/ssl/certs/monit.cnf On indique les informations du certificat # create RSA certs – Server RANDFILE = ./openssl.rnd [ req ] default_bits = 1024 encrypt_key = yes distinguished_name = req_dn x509_extensions = cert_type [ req_dn ] countryName = FR countryName_default = FR stateOrProvinceName = Ile de France stateOrProvinceName_default = Monitoria localityName = Paris localityName_default = Monittown organizationName = Exatek organizationName_default = Monit Inc. organizationalUnitName = Exatek organizationalUnitName_default = Monitoring commonName = exatek.fr commonName_default = exatek.com emailAddress = admin@exatek.fr emailAddress_default = admin@exatek.fr [ cert_type ] nsCertType = server Génération certificat privé openssl req -new -x509 -days 365 -nodes -config /etc/ssl/certs/monit.cnf -out /etc/ssl/certs/monit.pem -keyout /etc/ssl/certs/monit.pem 5 minutes de génération… openssl gendh 2048 >> /etc/ssl/certs/monit.pem On extrait l’empreinte openssl x509 -subject -dates -fingerprint -noout -in /etc/ssl/certs/monit.pem Suppression fichier de génération rm /etc/ssl/certs/monit.cnf On change les droits du certificat chmod 700 /etc/ssl/certs/monit.pem Fichier de configuration et mise en place des alertes nano /etc/monit/monitrc Exemples…