Managing SSH/SSL Schedules

You can create scheduled tasks to automatically carry out operations such as SSH resources and SSL certificates discovery, key rotation, and report generation at periodic intervals.

Add schedules

  1. Navigate to the Admin >> SSH/SSL >> Schedule. 
  2. Click the Add Schedule button.
  3. Select the type of schedule. You have six options :
    • AD User Certificate Discovery - Schedule the discovery of SSL certificates from active directory - basically, the certificates belonging to various users in Active Directory could be fetched into PAM360 using this option. Specify the domain name, name of the domain controller and user credentials. Click Fetch OU list and select the required user accounts / OUs in which certificate discovery has to be performed.
    • Key rotation – Schedule the rotation of SSH keys assigned to user accounts. Select the keys that are to be scheduled for rotation. If keys are not assigned but are scheduled to rotate, schedule rotation will fail and an error message will be displayed in the Schedule audit and the Audit tabs in the GUI. Also, you can automatically push the key files (private key, public key or both the private and public keys) onto its associated users by enabling the 'push key to user' option available in this page, instead of pushing the key files manually after every scheduled rotation.
    • Reports – Schedule the reports to be generated and sent to the email address specified. All the reports generated by PAM360 can be scheduled to be sent to email addresses using this option.
    • SSL Discovery - Schedule the discovery of SSL certificates using this option. Specify the start and end IP addresses and the ports to be checked for deployed SSL certificates.
    • SSL Expiry - Schedule expiry alert notifications for SSL certificates. Select the SSL certificates that are to be tracked for expiry, schedule the scan at required intervals of time and specify the number of days to expiry before which the email notification should be sent.
    • SSL Vulnerability - Schedule periodic vulnerability scan on selected or all SSL certificates in PAM360 repository. Select the certificates on which the vulnerability scan is to be performed at regular intervals of time, and specify an e-mail id to which notification is to be sent after every scan.
  1. Select the recurrence type as - hourly, daily, weekly, monthly, and once only. Set the starting time, date, or day, corresponding to the option chosen.
  2. Enter the email addresses of the users to be notified. The server authentication settings can be specified in the Admin → Settings → Mail Server Settings tab in the GUI.
  3. Click the Save button.

Note: The result of the schedule execution will get updated in the Schedule audit and also in the respective operation audits.

Edit schedules

  1. Navigate to Admin >> SSH/SSL >> Schedule. 
  2. Click the name of the schedule you would like to edit.
  3. You will be redirected to the Edit Schedule window. You can edit all the details of the schedule except its name and type.
  4. Click the Update button to save any modifications.

Enable/Disable schedules

The schedules can be enabled or disabled anytime. Use the disable option to stop the execution of a schedule temporarily without deleting it. When re-enabled, the schedule again starts its periodic execution.

To enable or disable a schedule execution:

  1. Navigate to Admin >> SSH/SSL >> Schedule. 
  2. Select the schedules and click the Enable Schedule or Disable Schedule button. You will get a confirmation that the schedule has been enabled or disabled successfully.

Note: The schedules set to run only once cannot be enabled if they have already been executed. Modify the schedule to enable it.

Delete schedules

  1. Navigate to Admin >> SSH/SSL >> Schedule. 
  2. Select the schedules to be deleted.
  3. Click the Delete Schedule button.
  4. Click OK in the confirmation pop-up window.

You will get confirmation that the schedules have been deleted successfully.

©2019, ZOHO Corp. All Rights Reserved.