Connect
Ask Community
Ask the community
Ask Community
  • Home
  • General
  • How to check the expiry of digital certificates?

How to check the expiry of digital certificates?Solved

Profile photo of sarahmiller
sarahmiller
Participant
Discussion
Hexnode UEM
2 weeks ago

Hey folks, I’m stuck in a loop. I’m responsible for a bunch of devices (50-100), each with digital certificates that can expire. Checking expiry manually every time is exhausting. Anyone found a better way to handle this?

topic view count 51 Views

Tags

Automation (20)
Reply

Replies (6)

Marked SolutionPending Review
Profile photo of smedt Veteran image
smedt
Participant
2 weeks ago
Marked SolutionPending Review

Oof, yeah, manually checking that many devices sounds like a nightmare. What platform are you managing?

Marked SolutionPending Review
Profile photo of sarahmiller Novice image
sarahmiller
Participant
2 weeks ago
Marked SolutionPending Review

It’s a mix, both Windows and macOS. We manage devices across both platforms.

Marked SolutionPending Review
Profile photo of remy-parker Novice image
remy-parker
Participant
2 weeks ago
Marked SolutionPending Review

I used a script from Hexnode’s documentation that could automate certificate expiry checks on Windows devices.
Here’s the link if you want to check it out: https://www.hexnode.com/mobile-device-management/help/script-to-check-certificate-expiry-on-windows-devices/

As for Mac, I didn’t find a script like the one for Windows, but you can use Keychain Access to check certificate expiry manually. https://support.apple.com/en-hk/guide/keychain-access/kyca2794/mac It might not be automatic, but you can at least quickly see expiry dates from there.

Marked SolutionPending Review
Profile photo of sarahmiller Novice image
sarahmiller
Participant
2 weeks ago
Marked SolutionPending Review

Thanks, I’ll check it out.

Marked SolutionPending Review
Profile photo of casper Veteran image
casper
Participant
1 week ago
Marked SolutionPending Review

Actually, if you want to automate on Mac too, try using this command in Terminal:

This lists all certificates in the System keychain along with their expiry dates. Replace “System.keychain” in /Library/Keychains/System.keychain with other keychains like login.keychain-db or SystemRootCertificates.keychain if you want.

Marked SolutionPending Review
Profile photo of sarahmiller Novice image
sarahmiller
Participant
7 days ago
Marked SolutionPending Review

Hey all, just wanted to share an update. I ran both scripts, and they worked great! Huge relief and saved me tons of time. Thanks for the help!

Load more
Save
Related Topics

Leaderboard

Profile photo of bram Pro image
bram
1495 pts
Profile photo of timo-liam Veteran image
timo-liam
805 pts
Profile photo of wilma Veteran image
wilma
805 pts
Profile photo of remi Veteran image
remi
725 pts
Profile photo of raelynn Veteran image
raelynn
720 pts
View all

Popular Tags

ABM (35)
Android (349)
iOS (302)
macOS (381)
Windows (249)
Apple TV (27)
App Management (296)
Enrollment (71)
Location (24)
Kiosk (169)
Scripts (78)
DEP (37)
OS Updates (68)
Android Enterprise (85)
View all