Certificate Expiration Alerts

Overview

You can use the Certificate Expiration Alerts API to configure multiple thresholds for certificate expiration alerts. The threshold value can specify the number of days before certificate expiration that an alert is to be raised. In the following description, the default alert threshold is represented as certificate_expire_threshold and registered under the /mgmt/cm/shared/event/alert-config/ collection. Additional alert thresholds which are being added or modified are represented as certificate_expire_threshold_1, certificate_expire_threshold_2, certificate_expire_threshold_3 ect.

Warning

This API is handled by the UI only and performs no backend validation of the alert configuration. Adding a bad configuration can result in unintended alert behavior, such as sending a large numbers of alert emails which exceed capacity. It is the responsibility of the administrator to use caution when using this API to configure multiple thresholds.

REST Endpoint: /mgmt/cm/shared/event/alert-config

Requests

GET /mgmt/cm/shared/event/alert-config?$filter=(displayName eq ‘Certificate expiration’)

To retrieve all the threshold records, you can send a GET request to the /mgmt/cm/shared/event/alert-config collection and filter by the value of displayName to be equal to “Certificate expiration”.

Query Parameters

The following parameter can be used as OData query options with this API.

Name Type Required Description
$filter string True To retrieve all the threshold records in the collection, filter for a displayName value equal to “Certificate expiration”.

Request Parameters

None

Response

HTTP/1.1 200 OK

Name Type Description
items object A list of all threshold records.
     alertConditionExpression string An evaluation condition for this threshold. For example, if the default alert threshold is 30 days, the value of alertConditionExpression can be “latest le 30d”. If an additional alert threshold is 10 days, the value of alertConditionExpression can be “latest le 10d”.
     alertFilter string A filter condition for this threshold. The value must correspond to the alertType and the {device} of this threshold. For example, if the alertType is “certificate_expire_threshold_1” then the value of alertFilter can be “alertType eq ‘certificate_expire_threshold_1’ and source eq ‘{{device}}’”. And {device} identifies the BIG-IP.
     alertType string Identifies a unique alert threshold record. For example, the value of alertType for the default threshold can be “certificate_expire_threshold” and the value for an additional threshold can be “certificate_expire_threshold_1”.
     selfLink string URL of this certificate expiration alert threshold
     dataValues object Includes a value and label for the threshold.
          threshold string Specifies the threshold as days until expiration. For example, if the default threshold is 30 days the value of threshold is “30d”. If an additional threshold is 10 days the value of threshold is “10d”.
          thresholdLabel string A description of the threshold. For example, this value can be “Days to expiration”.
     displayName string The value can be “Certificate expiration” for an alert that the certificate is expiring.
totalItems number The number of threshold records.

Permissions

Role Allow
ADC_Certificate_Viewer Yes
ADC_Common_Viewer Yes
Device_Common_Viewer Yes
License_Common Yes
Trust_Discovery_Import Yes

GET /mgmt/cm/shared/event/alert-config/certificate_expire_threshold

To retrieve a specific threshold record, for the default or additional thresholds, you can send a GET request to the /mgmt/cm/shared/event/alert-config collection and specify the record explicitly. For example, to retrieve the default threshold you can send the GET request to /alert-config/certificate_expire_threshold. To retrieve one of the additional thresholds you can send the GET request to /alert-config/certificate_expire_threshold_1 or /alert-config/certificate_expire_threshold_2 ect.

Query Parameters

Name Type Required Description
certificate_expire_threshold string True Identifies a unique alert threshold record. Use the value of alertType here to identify the threshold record. For example, the value of alertType for the default threshold can be “certificate_expire_threshold” and the value for additional threshold records can be “certificate_expire_threshold_1”, “certificate_expire_threshold_2” ect.

Request Parameters

None

Response

HTTP/1.1 200 OK

Name Type Description
alertConditionExpression string An evaluation condition for this threshold. For example, if the default alert threshold is 30 days, the value of alertConditionExpression can be “latest le 30d”. If an additional alert threshold is 10 days, the value of alertConditionExpression can be “latest le 10d”.
alertFilter string A filter condition for this threshold. The value must correspond to the alertType and {device} of this threshold. For example, if the alertType is “certificate_expire_threshold_1” then the value of alertFilter can be “alertType eq ‘certificate_expire_threshold_1’ and source eq ‘{{device}}’”. And {device} identifies the BIG-IP.
alertType string Identifies a unique alert threshold record. For example, the value of alertType for the default threshold can be “certificate_expire_threshold” and the value for an additional threshold can be “certificate_expire_threshold_1”.
selfLink string URL of this certificate expiration alert threshold
dataValues object Includes a value and label for the threshold.
     threshold string Specifies the threshold as days until expiration. For example, if the default threshold is 30 days the value of threshold is “30d”. If an additional threshold is 10 days the value of threshold is “10d”.
     thresholdLabel string A description of the threshold. For example, this value can be “Days to expiration”.
displayName string The value can be “Certificate expiration” for an alert that the certificate is expiring.

Permissions

Role Allow
ADC_Certificate_Viewer Yes
ADC_Common_Viewer Yes
Device_Common_Viewer Yes
License_Common Yes
Trust_Discovery_Import Yes

DELETE /mgmt/cm/shared/event/alert-config/certificate_expire_threshold_1

To delete a specific threshold record, other than the default threshold, you can send a DELETE request to the /mgmt/cm/shared/event/alert-config collection and specify the record explicitly. For example, to delete an additional threshold you can send the DELETE request to /alert-config/certificate_expire_threshold_1 or /alert-config/certificate_expire_threshold_2 ect.

Query Parameters

Name Type Required Description
certificate_expire_threshold_1 string True Identifies a unique alert threshold record, which is not the default. Use the value of alertType here to identify the threshold record. For example, the value can be “certificate_expire_threshold_1”, “certificate_expire_threshold_2”, “certificate_expire_threshold_2” ect.

Request Parameters

None

Response

HTTP/1.1 200 OK

Name Type Description
items object A list of all threshold records.
     alertConditionExpression string An evaluation condition for this threshold. For example, if the default alert threshold is 30 days, the value of alertConditionExpression can be “latest le 30d”. If an additional alert threshold is 10 days, the value of alertConditionExpression can be “latest le 10d”.
     alertFilter string A filter condition for this threshold. The value must correspond to the alertType and {device} of this threshold. For example, if the alertType is “certificate_expire_threshold_1” then the value of alertFilter can be “alertType eq ‘certificate_expire_threshold_1’ and source eq ‘{{device}}’”. And {device} identifies the BIG-IP.
     alertType string Identifies a unique alert threshold record. For example, the value of alertType for the default threshold can be “certificate_expire_threshold” and the value for an additional threshold can be “certificate_expire_threshold_1”.
     selfLink string URL of this certificate expiration alert threshold
     dataValues object Includes a value and label for the threshold.
          threshold string Specifies the threshold as days until expiration. For example, if the default threshold is 30 days the value of threshold is “30d”. If an additional threshold is 10 days the value of threshold is “10d”.
          thresholdLabel string A description of the threshold. For example, this value can be “Days to expiration”.
     displayName string The value can be “Certificate expiration” for an alert that the certificate is expiring.
totalItems number The number of threshold records.

Permissions

Role Allow
Admin Yes

PATCH /mgmt/cm/shared/event/alert-config/certificate_expire_threshold

To change a specific threshold record, you can send a PATCH request to the /mgmt/cm/shared/event/alert-config collection and specify the record explicitly.

Query Parameters

Name Type Required Description
certificate_expire_threshold string True Identifies a unique alert threshold record. Use the value of alertType here to identify the threshold record to change. For example, the value of alertType for the default threshold can be “certificate_expire_threshold” and the value for additional threshold records can be “certificate_expire_threshold_1”, “certificate_expire_threshold_2” ect.

Request Parameters

Name Type Required Description
alertConditionExpression string False An evaluation condition for the changed threshold. For example, if the changed threshold is 30 days, the value of alertConditionExpression can be “latest le 30d”.
alertFilter string False A filter condition for this threshold. The value must correspond to the alertType and {device} of the threshold record being modified. For example, if the alertType of this record is “certificate_expire_threshold_1” then the value of alertFilter can be “alertType eq ‘certificate_expire_threshold_1’ and source eq ‘{{device}}’”. And {device} identifies the BIG-IP.
alertType string False Identifies the changed alert threshold record.
selfLink string False URL of this certificate expiration alert threshold
dataValues object False Includes a value and label for the changed threshold.
     threshold string False Specifies the threshold as days until expiration. The value is for the changed threshold. For example, if the changed threshold is 10 days, the value of threshold can be “10d”.
     thresholdLabel string False A description of the changed threshold. For example, this value can be “Days to expiration”.
displayName string False The value can be “Certificate expiration” for an alert that the certificate is expiring.

Response

HTTP/1.1 200 OK

Name Type Description
alertConditionExpression string An evaluation condition for this threshold. For example, if the alert threshold is 30 days, the value of alertConditionExpression can be “latest le 30d”.
alertFilter string A filter condition for this threshold. The value must correspond to the alertType and {device} of this threshold. For example, if the alertType is “certificate_expire_threshold_1” then the value of alertFilter can be “alertType eq ‘certificate_expire_threshold_1’ and source eq ‘{{device}}’”. And {device} identifies the BIG-IP.
alertType string Identifies a unique alert threshold record. For example, the value of alertType for the default threshold can be “certificate_expire_threshold” and the value for an additional threshold can be “certificate_expire_threshold_1”.
selfLink string URL of this certificate expiration alert threshold
dataValues object Includes a value and label for the threshold.
     threshold string Specifies the threshold as days until expiration. For example, if the default threshold is 30 days the value of threshold is “30d”. If an additional threshold is 10 days the value of threshold is “10d”.
     thresholdLabel string A description of the threshold. For example, this value can be “Days to expiration”.
displayName string The value can be “Certificate expiration” for an alert that the certificate is expiring.

Permissions

Role Allow
admin Yes

POST /mgmt/cm/shared/event/alert-config/certificate_expire_threshold

To create a default or additional threshold send a POST request to the /mgmt/cm/shared/event/alert-config collection. To create a certificate expiration alert, the body of the request must contain all the information required by a certificate expiration alert. See the POST to add a certificate expiration threshold in the Examples section for an example of JSON in the body of a POST request.

Query Parameters

None

Request Parameters

Name Type Required Description
aggregationType string False For a certificate expiration alert, this value can be “LATEST”.
alertConditionExpression string False An evaluation condition for the modified threshold. For example, if the modified alert threshold is 30 days, the value of alertConditionExpression can be “latest le 30d”.
alertDeviceType string False This value can be “BIG-IQ”.
alertFilter string False A filter condition for this threshold. The value must correspond to the alertType and {device} of the threshold record being modified. For example, if the alertType of this record is “certificate_expire_threshold_1” then the value of alertFilter can be “alertType eq ‘certificate_expire_threshold_1’ and source eq ‘{{device}}’”. And {device} identifies the BIG-IP.
alertLevel string False For a certificate expiration alert, this value can be “WARNING”.
alertTimeWindow string False For a certificate expiration alert, this can be 1 day and this value can be “1d”
alertType string False Identifies a unique alert threshold record. For example, the value of alertType for the default threshold can be “certificate_expire_threshold” and the value for an additional threshold can be “certificate_expire_threshold_1”.
dataIsMultiValued boolean False For a certificate expiration alert, this value can be true.
dataValues object False For a certificate expiration alert, dataValues can contain two objects.
     o1 object False A data value
          name string False For a certificate expiration alert, this value can be “device”.
          path string False For a certificate expiration alert, this value can be “key”.
          type string False For a certificate expiration alert, this value can be “STRING”.
     o2 object False A data value
          name string False For a certificate expiration alert, this value can be “latest”.
          path string False For a certificate expiration alert, this value can be “latest”.
          threshold string False Specifies the threshold as days until expiration. For example, if the default threshold is 30 days the value of threshold is “30d”. If an additional threshold is 10 days the value of threshold is “10d”.
          thresholdLabel string False A description of the threshold. For example, this value can be “Days to expiration”.
     type string False For a certificate expiration alert, this value can be “INT”.
displayName string False The value can be “Certificate expiration” for an alert that the certificate is expiring.
displayThreshold string False For a certificate expiration alert, this displays how many days until expiration. Possible values are 1-3650 days. For example, this value can be “30 Days to expiration “.
emailSubject string False For a certificate expiration alert, this value can be “30 Days to expiration (1-3650)”.
eventFilter string False For a certificate expiration alert, this value can be “eventType eq ‘certificate_expire_date’”.
eventProperties string False “Certificate Partition: {{__property__cert_partition}}nnCertificate Name: {{__property__cert_name}}nnExpiration Date: {{__property__cert_expirationDateTime}}nnCertificate Subject: {{__property__cert_subject}}nnCertificate Issuer: {{__property__cert_issuer}}”
eventTimeWindow string False For a certificate expiration alert, this value can be “1d”.
isEnabled boolean False For a certificate expiration alert, this value can be true.
message string False “Certificate {{__property__cert_name}} on Hostname: {{__device_hostname__}} will expire in {{latest}} days”
max number False For a certificate expiration alert, this value can be 3650.
maxValue number False For a certificate expiration alert, this value can be 3650.
minValue number False For a certificate expiration alert, this value can be 1.
onlyAlertOnce boolean False For a certificate expiration alert, this value can be true.
pollingInterval string False For a certificate expiration alert, this value can be “12h”.
publishIndividualStats boolean False For a certificate expiration alert, this value can be true.
sameTypeAlerts object False For a certificate expiration alert, this value can be null.
selfLink string False URL of this certificate expiration alert threshold
snmpEvent string False For a certificate expiration alert, this value can be “No”.
statsName string False For a certificate expiration alert, this value can be “health.summary.certs”.
statsSummaryDescription string False For a certificate expiration alert, this value can be “Device has certificates that are expiring soon”.
threshold number False For a certificate expiration alert, days until expiration. If the threshold is 30 days the value of is 30.
thresholdDisplayLabel string False For a certificate expiration alert, this value can be
thresholdLabel string False A description of the threshold. For example, this value can be “30 Days to expiration”.

Response

HTTP/1.1 200 OK

The JSON in the body of the response will look similar to the body of the request.

Permissions

Role Allow
admin Yes

Examples

POST to add a certificate expiration threshold

Following is an example of a POST to add a default or additional certificate expiration threshold.

POST https://<BIG-IQ>/mgmt/cm/shared/event/alert-config/certificate_expire_threshold

The JSON in the body of the POST can look similar to the following example.

{
    "kind": "cm:shared:event:alert-config:alertconfigurationstate",
    "message": "Certificate {{__property__cert_name}} on Hostname: {{__device_hostname__}} will expire in {{latest}} days",
    "maxValue": 3650,
    "minValue": 1,
    "selfLink": "https://localhost/mgmt/cm/shared/event/alert-config/certificate_expire_threshold",
    "alertType": "certificate_expire_threshold",
    "isEnabled": true,
    "statsName": "health.summary.certs",
    "alertLevel": "WARNING",
    "dataValues": [{
                    "name": "device",
                    "path": "key",
                    "type": "STRING"
            },
            {
                    "name": "latest",
                    "path": "latest",
                    "type": "INT",
                    "threshold": "30d",
                    "thresholdLabel": "Days to expiration"
            }
    ],
    "alertFilter": "alertType eq 'certificate_expire_threshold' and source eq '{{device}}'",
    "displayName": "Certificate expiration",
    "eventFilter": "eventType eq 'certificate_expire_date'",
    "emailSubject": "Certificate Expiration Alert",
    "onlyAlertOnce": true,
    "aggregationType": "LATEST",
    "alertDeviceType": "BIG_IQ",
    "alertTimeWindow": "5m",
    "eventProperties": "Certificate Partition: {{__property__cert_partition}}\n\nCertificate Name: {{__property__cert_name}}\n\nExpiration Date: {{__property__cert_expirationDateTime}}\n\nCertificate Subject: {{__property__cert_subject}}\n\nCertificate Issuer: {{__property__cert_issuer}}",
    "eventTimeWindow": "1m",
    "pollingInterval": "1m",
    "lastUpdateMicros": 1594117454905599,
    "dataIsMultiValued": false,
    "publishIndividualStats": true,
    "statsSummaryDescription": "Device has certificates that are expiring soon",
    "alertConditionExpression": "latest le 3d",
    "snmpEvent": "No",
    "sameTypeAlerts": [],
    "threshold": 30,
    "thresholdDisplayLabel": "N/A",
    "thresholdLabel": "Days to expiration (1-3650)",
    "max": 3650,
    "displayThreshold": "3 Days to expiration (1-3650)"
}

Response

HTTP/1.1 200 OK

{
    "alertType": "certificate_expire_threshold",
    "isEnabled": true,
    "eventFilter": "eventType eq 'certificate_expire_date'",
    "eventTimeWindow": "1m",
    "aggregationType": "LATEST",
    "pollingInterval": "1m",
    "dataIsMultiValued": false,
    "dataValues": [{
                    "name": "device",
                    "path": "key",
                    "type": "STRING"
            },
            {
                    "name": "latest",
                    "path": "latest",
                    "type": "INT",
                    "thresholdLabel": "Days to expiration",
                    "threshold": "30d"
            }
    ],
    "alertConditionExpression": "latest le 30d",
    "alertFilter": "alertType eq 'certificate_expire_threshold' and source eq '{{device}}'",
    "alertTimeWindow": "5m",
    "alertLevel": "WARNING",
    "message": "Certificate {{__property__cert_name}} on Hostname: {{__device_hostname__}} will expire in {{latest}} days",
    "eventProperties": "Certificate Partition: {{__property__cert_partition}}\n\nCertificate Name: {{__property__cert_name}}\n\nExpiration Date: {{__property__cert_expirationDateTime}}\n\nCertificate Subject: {{__property__cert_subject}}\n\nCertificate Issuer: {{__property__cert_issuer}}",
    "emailSubject": "Certificate Expiration Alert",
    "statsName": "health.summary.certs",
    "statsSummaryDescription": "Device has certificates that are expiring soon",
    "publishIndividualStats": true,
    "alertDeviceType": "BIG_IQ",
    "maxValue": 3650.0,
    "minValue": 1.0,
    "displayName": "Certificate expiration",
    "onlyAlertOnce": true,
    "generation": 6,
    "lastUpdateMicros": 1594117466716434,
    "kind": "cm:shared:event:alert-config:alertconfigurationstate",
    "selfLink": "https://localhost/mgmt/cm/shared/event/alert-config/certificate_expire_threshold"
}

GET to retrieve all certificate expiration threshold records

Following is an example of a GET to retrieve all the certificate expiration threshold records in the collection.

GET https://<BIG-IQ>/mgmt/cm/shared/event/alert-config?$filter=(displayName eq 'Certificate expiration')

The body of the GET request can be empty.

Response

HTTP/1.1 200 OK

{
    "totalItems": 2,
    "items": [{
                    "kind": "cm:shared:event:alert-config:alertconfigurationstate",
                    "message": "Certificate {{__property__cert_name}} on Hostname: {{__device_hostname__}} will expire in {{latest}} days",
                    "maxValue": 3650.0,
                    "minValue": 1.0,
                    "selfLink": "https://localhost/mgmt/cm/shared/event/alert-config/certificate_expire_threshold",
                    "alertType": "certificate_expire_threshold",
                    "isEnabled": true,
                    "statsName": "health.summary.certs",
                    "alertLevel": "WARNING",
                    "dataValues": [{
                                    "name": "device",
                                    "path": "key",
                                    "type": "STRING"
                            },
                            {
                                    "name": "latest",
                                    "path": "latest",
                                    "type": "INT",
                                    "threshold": "30d",
                                    "thresholdLabel": "Days to expiration"
                            }
                    ],
                    "generation": 2.0,
                    "alertFilter": "alertType eq 'certificate_expire_threshold' and source eq '{{device}}'",
                    "displayName": "Certificate expiration",
                    "eventFilter": "eventType eq 'certificate_expire_date'",
                    "emailSubject": "Certificate Expiration Alert",
                    "onlyAlertOnce": true,
                    "aggregationType": "LATEST",
                    "alertDeviceType": "BIG_IQ",
                    "alertTimeWindow": "1d",
                    "eventProperties": "Certificate Partition: {{__property__cert_partition}}\n\nCertificate Name: {{__property__cert_name}}\n\nExpiration Date: {{__property__cert_expirationDateTime}}\n\nCertificate Subject: {{__property__cert_subject}}\n\nCertificate Issuer: {{__property__cert_issuer}}",
                    "eventTimeWindow": "1d",
                    "pollingInterval": "12h",
                    "lastUpdateMicros": 1.596016664962498E15,
                    "dataIsMultiValued": false,
                    "publishIndividualStats": true,
                    "statsSummaryDescription": "Device has certificates that are expiring soon",
                    "alertConditionExpression": "latest le 30d"
            },
            {
                    "kind": "cm:shared:event:alert-config:alertconfigurationstate",
                    "message": "Certificate {{__property__cert_name}} on Hostname: {{__device_hostname__}} will expire in {{latest}} days",
                    "maxValue": 3650.0,
                    "minValue": 1.0,
                    "selfLink": "https://localhost/mgmt/cm/shared/event/alert-config/certificate_expire_threshold_1",
                    "alertType": "certificate_expire_threshold_1",
                    "isEnabled": true,
                    "statsName": "health.summary.certs",
                    "alertLevel": "WARNING",
                    "dataValues": [{
                                    "name": "device",
                                    "path": "key",
                                    "type": "STRING"
                            },
                            {
                                    "name": "latest",
                                    "path": "latest",
                                    "type": "INT",
                                    "threshold": "10d",
                                    "thresholdLabel": "Days to expiration"
                            }
                    ],
                    "generation": 2.0,
                    "alertFilter": "alertType eq 'certificate_expire_threshold_1' and source eq '{{device}}'",
                    "displayName": "Certificate expiration",
                    "eventFilter": "eventType eq 'certificate_expire_date'",
                    "emailSubject": "Certificate Expiration Alert",
                    "onlyAlertOnce": true,
                    "aggregationType": "LATEST",
                    "alertDeviceType": "BIG_IQ",
                    "alertTimeWindow": "1d",
                    "eventProperties": "Certificate Partition: {{__property__cert_partition}}\n\nCertificate Name: {{__property__cert_name}}\n\nExpiration Date: {{__property__cert_expirationDateTime}}\n\nCertificate Subject: {{__property__cert_subject}}\n\nCertificate Issuer: {{__property__cert_issuer}}",
                    "eventTimeWindow": "1d",
                    "pollingInterval": "12h",
                    "lastUpdateMicros": 1.595905469375027E15,
                    "dataIsMultiValued": false,
                    "publishIndividualStats": true,
                    "statsSummaryDescription": "Device has certificates that are expiring soon",
                    "alertConditionExpression": "latest le 10d"
            }
    ],
    "generation": 54,
    "kind": "cm:shared:event:alert-config:alertconfigurationcollectionstate",
    "lastUpdateMicros": 1596016664986624,
    "selfLink": "https://localhost/mgmt/cm/shared/event/alert-config"
}

GET to retrieve a specific certificate expiration threshold record

Following is an example of a GET to retrieve a specific certificate expiration threshold record: certificate_expire_threshold .

GET https://<BIG-IQ>/mgmt/cm/shared/event/alert-config/certificate_expire_threshold

The body of the GET request can be empty.

Response

HTTP/1.1 200 OK

{
    "alertType": "certificate_expire_threshold",
    "isEnabled": true,
    "eventFilter": "eventType eq 'certificate_expire_date'",
    "eventTimeWindow": "1m",
    "aggregationType": "LATEST",
    "pollingInterval": "1m",
    "dataIsMultiValued": false,
    "dataValues": [{
                    "name": "device",
                    "path": "key",
                    "type": "STRING"
            },
            {
                    "name": "latest",
                    "path": "latest",
                    "type": "INT",
                    "thresholdLabel": "Days to expiration",
                    "threshold": "30d"
            }
    ],
    "alertConditionExpression": "latest le 30d",
    "alertFilter": "alertType eq 'certificate_expire_threshold' and source eq '{{device}}'",
    "alertTimeWindow": "5m",
    "alertLevel": "WARNING",
    "message": "Certificate {{__property__cert_name}} on Hostname: {{__device_hostname__}} will expire in {{latest}} days",
    "eventProperties": "Certificate Partition: {{__property__cert_partition}}\n\nCertificate Name: {{__property__cert_name}}\n\nExpiration Date: {{__property__cert_expirationDateTime}}\n\nCertificate Subject: {{__property__cert_subject}}\n\nCertificate Issuer: {{__property__cert_issuer}}",
    "emailSubject": "Certificate Expiration Alert",
    "statsName": "health.summary.certs",
    "statsSummaryDescription": "Device has certificates that are expiring soon",
    "publishIndividualStats": true,
    "alertDeviceType": "BIG_IQ",
    "maxValue": 3650.0,
    "minValue": 1.0,
    "displayName": "Certificate expiration",
    "onlyAlertOnce": true,
    "generation": 6,
    "lastUpdateMicros": 1594117466716434,
    "kind": "cm:shared:event:alert-config:alertconfigurationstate",
    "selfLink": "https://localhost/mgmt/cm/shared/event/alert-config/certificate_expire_threshold"
}

DELETE to delete a specific threshold

Following is an example of a DELETE to delete a specific threshold other than default.

DELETE https://<BIG-IQ>/mgmt/cm/shared/event/alert-config/certificate_expire_threshold_1

The body of the DELETE request can be empty.

Response

HTTP/1.1 200 OK

{
    "alertType": "certificate_expire_threshold",
    "isEnabled": true,
    "eventFilter": "eventType eq 'certificate_expire_date'",
    "eventTimeWindow": "1m",
    "aggregationType": "LATEST",
    "pollingInterval": "1m",
    "dataIsMultiValued": false,
    "dataValues": [{
                    "name": "device",
                    "path": "key",
                    "type": "STRING"
            },
            {
                    "name": "latest",
                    "path": "latest",
                    "type": "INT",
                    "thresholdLabel": "Days to expiration",
                    "threshold": "30d"
            }
    ],
    "alertConditionExpression": "latest le 30d",
    "alertFilter": "alertType eq 'certificate_expire_threshold' and source eq '{{device}}'",
    "alertTimeWindow": "5m",
    "alertLevel": "WARNING",
    "message": "Certificate {{__property__cert_name}} on Hostname: {{__device_hostname__}} will expire in {{latest}} days",
    "eventProperties": "Certificate Partition: {{__property__cert_partition}}\n\nCertificate Name: {{__property__cert_name}}\n\nExpiration Date: {{__property__cert_expirationDateTime}}\n\nCertificate Subject: {{__property__cert_subject}}\n\nCertificate Issuer: {{__property__cert_issuer}}",
    "emailSubject": "Certificate Expiration Alert",
    "statsName": "health.summary.certs",
    "statsSummaryDescription": "Device has certificates that are expiring soon",
    "publishIndividualStats": true,
    "alertDeviceType": "BIG_IQ",
    "maxValue": 3650.0,
    "minValue": 1.0,
    "displayName": "Certificate expiration",
    "onlyAlertOnce": true,
    "generation": 6,
    "lastUpdateMicros": 1594117466716434,
    "kind": "cm:shared:event:alert-config:alertconfigurationstate",
    "selfLink": "https://localhost/mgmt/cm/shared/event/alert-config/certificate_expire_threshold"
}