Dashboard and Monitoring Overview

This section describes the system's dashboard and monitoring capabilities, providing administrators with a centralized view of the PKI system's health, operational statistics, and security posture. It aggregates critical information from various components to offer a comprehensive overview.

Key Functionalities

Main Dashboard

  • Endpoint: /dashboard
  • Description: Serves as the primary entry point for system oversight, presenting a consolidated view of:
    • System Statistics: Key metrics on Certificate Authorities and Certificates.
    • Recent Activity: Latest certificate issuance and revocation events.
    • Security Alerts: Proactive notifications regarding potential security issues or critical events.
    • System Health: Status indicators for core services and components.
  • Quick Access: Provides immediate visibility into total CAs, root/intermediate CAs, total/active/revoked certificates, and certificates eligible for auto-renewal.

System Statistics

  • Description: Gathers and presents various statistical data points to help understand the system's scale and usage patterns.
  • Metrics Included:
    • Total number of Certificate Authorities.
    • Counts of active, revoked, and expiring (within 30 days) certificates.
    • Breakdown of active certificates by type (e.g., server, client, email).
    • Historical trends of certificate issuance, aggregated by month over the last 12 months.
    • Number of certificates currently eligible for auto-renewal.

Recent Activity

  • Description: Tracks and displays the most recent significant events within the PKI.
  • Events Monitored:
    • Recent Certificate Issuances: A list of the 10 most recently created certificates, including their common name, type, issuing CA, creation date, and status.
    • Recent Certificate Revocations: A list of the 5 most recently revoked certificates, including their common name, issuing CA, revocation date, and reason.

Security Alerts

  • Description: Proactively identifies and highlights potential security risks or critical operational issues.
  • Alert Types:
    • CA Rotation Required: Alerts for Certificate Authorities that are due for rotation, categorizing them by severity (error, warning, info) based on their urgency (critical, high, medium, low). Provides a direct link to the CA rotation status page.
    • Certificates Expiring Soon: Notifies if a significant number of active certificates are nearing expiration (e.g., within 7 days), with a link to the list of eligible certificates for auto-renewal.
    • Auto-Renewal Disabled: Warns if the global certificate auto-renewal feature is currently disabled, with a link to the auto-renewal configuration page.

System Health

  • Description: Provides insights into the operational status and health of key system components.
  • Health Indicators:
    • Auto-Renewal Service Health: Status of the automated certificate renewal service.
    • Certificate Authority Health: Assesses the health of each individual CA, including its rotation urgency, count of active certificates, expiration date, recommendations, trust badges, and whether it requires a private key password.
    • Overall System Status: A general indicator of the system's health (currently healthy, designed for future expansion with more checks).

Inferred Specifications

  • Centralized PKI Monitoring: The dashboard serves as a single, comprehensive interface for monitoring the entire PKI ecosystem.
  • Real-time Operational Visibility: Provides up-to-date statistics and metrics on CAs, certificates, and system activities.
  • Proactive Security and Operational Alerting: The system is designed to proactively identify and alert administrators to critical security events (e.g., CA rotation needs, impending certificate expirations) and operational issues (e.g., disabled auto-renewal).
  • Integrated Health Checks: Incorporates health checks for essential services like auto-renewal, ensuring their operational status is continuously monitored.
  • Detailed CA Health Assessment: Offers granular health status for individual Certificate Authorities, including their security attributes and maintenance requirements.
  • Historical Trend Analysis: Supports the visualization of certificate issuance and other trends over time, aiding in capacity planning and anomaly detection.
  • Actionable Insights: Alerts and recommendations are designed to be actionable, guiding administrators directly to the relevant management interfaces to resolve identified issues.
  • Tight Feature Integration: The dashboard is tightly integrated with other core features like CA Rotation and Certificate Auto-Renewal, providing seamless navigation to related management functionalities.
  • Extensible Monitoring Framework: The system health monitoring framework is designed to be extensible, allowing for the inclusion of additional system components and health checks in the future.

Vous n'avez pas envie de la manager ?

Découvrir notre offre PKI As A Service