Results

The SSLClosed TLS (Transport Layer Security) and its predecessor SSL (Secure Sockets Layer) are protocols for establishing authenticated and encrypted links between networked computers. network discovery and monitoring results include endpoints that returned certificates as well as endpoints that resulted in some level of response (did not time out) but did not return certificates.

Figure 266: SSL Discovery Results

For each endpointClosed An endpoint is a URL that enables the API to gain access to resources on a server. discovered during the scan, the results grid includes the following:

The host nameClosed The unique identifier that serves as name of a computer. It is sometimes presented as a fully qualified domain name (e.g. servername.keyexample.com) and sometimes just as a short name (e.g. servername). converted to an IP address, or the IP address scanned. The DNSClosed The Domain Name System is a service that translates names into IP addresses. name is resolved by the orchestratorClosed Keyfactor orchestrators perform a variety of functions, including managing certificate stores and SSH key stores. performing the scan, based on the DNS settings of the server running the orchestrator.

The server name indicationClosed Server name indication (SNI) is an extension to TLS that provides for including the hostname of the target server in the initial handshake request to allow the server to respond with the correct SSL certificate or allow a proxy to forward the request to the appropriate target. (SNIClosed Server name indication (SNI) is an extension to TLS that provides for including the hostname of the target server in the initial handshake request to allow the server to respond with the correct SSL certificate or allow a proxy to forward the request to the appropriate target.), if one is found.

The IP address scanned.

The port scanned.

Whether a certificate was found at the endpoint on the most recent scan (true/false).

Common nameClosed A common name (CN) is the component of a distinguished name (DN) that represents the primary name of the object. The value varies depending on the type of object. For a user object, this would be the user's name (e.g. CN=John Smith). For SSL certificates, the CN is typically the fully qualified domain name (FQDN) of the host where the SSL certificate will reside (e.g. servername.keyexample.com or www.keyexample.com). discovered on the certificate.

The orchestrator pool name that contains the orchestrator that discovered and/or monitored the endpoint.

The name of the network.

Whether the discovered endpoint is configured for monitoring (true/false). If the Automatically monitor endpoints found during discovery option is enabled in the network definition, the orchestrator will, upon initial discovery, monitor the discovered certificate. You can change the monitoring status of a discovered endpoint in the results grid.

The discovered endpoint has been reviewed (true/false). To denote an endpoint as reviewed, highlight the row in the results grid and click Mark as Reviewed at the top of the grid or right-click the endpoint and choose Mark as Reviewed.