×
 
 
  •  
$helper.renderConfluenceMacro('{bmc-global-announcement:$space.key}')
BMC Helix Discovery ... Developing Node lifecycle DDD nodes

Discovered Certificate node

A Discovered Certificate node stores information about a TLS certificate that has been retrieved from a target. 

Discovered Certificate Lifecycle

The following section describes the scenarios in which a Discovered Certificate node is created or destroyed. DDD nodes are never updated.

Creation

Whenever BMC Helix Discovery retrieves a certificate, a Discovered Certificate node is created. A Discovered Certificate node is created for each discovered Certificate.

Removal

A Discovered Certificate node is removed when the Discovery Access node which it is associated with has been destroyed through the Aging process.

Fingerprint type

The certificate fingerprint is not always of the type SHA-256.

Attributes and relationships of the DiscoveredCertificate node

The attributes of the DiscoveredCertificate node are described in the following table:

UI Name
Attribute Name and Type

Description

Discovery Method
discovery_method : string

Discovery method

Discovery Duration
discovery_duration : int

Time in seconds spent in discovery

Request Time
request_time : date

When this request was made

Failure Reason
failure_reason : string

Reason for failure, if any

Failure Cause
failure_cause : string

Extra details, if any, on reason for failure

Not shown in UI
name : string

Certificate name

Not shown in UI
key : string

Certificate key

Port
port : string

Discovered port

Not shown in UI
address : string

Discovered address

Target
target : string

Discovered hostname/IP address

Version
version : string

Certificate version

Fingerprint
fingerprint : string

Certificate fingerprint

Serial number
serial_number : string

Certificate serial number

Issuer
issuer : string

Certificate issuer

Subject
subject : string

Certificate subject

Signature
signature : string

Certificate signature

Signature hash algorithm
signature_hash_algorithm : string

Certificate signature hash algorithm

Signature algorithm OID
signature_algorithm_oid : string

Certificate signature algorithm OID

Not valid before
not_valid_before : date

Certificate not valid before

Not valid after
not_valid_after : date

Certificate not valid after

Self signed
self_signed : boolean

Is certificate self signed

Verified
verified : boolean

Is certificate verified

Expired
expired : boolean

Is certificate expired

Not shown in UI
command_status_failure : boolean

Flag that this node has command failures linked to it

Not shown in UI
method_failure : boolean

Flag that this node has script failures linked to it

Not shown in UI
method_success : string

The name of the script that succeeded in getting this data

Not shown in UI
access_method : string

The access method used by the script that succeeded in getting this data

Requesting Pattern
requesting_pattern : string

The name of the pattern that requested this data

SHA-256 fingerprint
sha_256_fingerprint : string

Certificate SHA-256 fingerprint

Used SSL version
used_ssl_version : string

Used SSL/TLS protocol version

The relationships of the DiscoveredCertificate node are described in the following table:

UI Name

Relationship

Description

Data Source Access

DiscoveryResult:
DiscoveryAccessResult:
DiscoveryAccess:
DataSourceAccess

Related Data Source Access

Discovery Access

DiscoveryResult:
DiscoveryAccessResult:
DiscoveryAccess:
DiscoveryAccess

Related Discovery Access

Provider Access

DiscoveryResult:
DiscoveryAccessResult:
DiscoveryAccess:
ProviderAccess

Related Provider Access

Command Failures

DiscoveryResult:
Metadata:
Detail:
CommandFailure

Command Failures

Script Failures

DiscoveryResult:
Metadata:
Detail:
ScriptFailure

Script Failures

Requested Discovery Access

RequestSource:
Request:
DiscoveryAccess:
DiscoveryAccess

Discovery requested during discovery of another device

Requesting Pattern

DiscoveryResult:
Request:
Pattern:
Pattern

Pattern from which the request to retrieve this information originated (deprecated)

Not shown in UI
(Relationship)

DiscoveryResult:
Request:
PatternExecution:
PatternTrigger

Pattern Execution Trigger which requested retrieval of this information

Was this page helpful? Yes No Submitting... Thank you
Last modified by Olha Horbachuk on Jul 20, 2023

Comments

Log in or register to comment.

DataSourceAccess node
Introductory information
© Copyright 2004 - 2023 BMC Software, Inc.
Legal notices

Powered by Atlassian Confluence and Scroll Viewport

© Copyright 2005-2024 BMC Software, Inc. Use of this site signifies your acceptance of BMC’s Terms of Use . BMC, the BMC logo, and other BMC marks are assets of BMC Software, Inc. These trademarks are registered and may be registered in the U.S. and in other countries.