Trigger email notifications or Azure log generation when a certificate is nearing expiration.
We recently ran into an issue where the AzureRunAs cert expired and caused most automations to fail due to a connectivity error. The client hadn't checked on AA for a bit and didn't see the portal warning.
Would be nice to have an email alert option to alert admins when certificates stored in AA are nearing expiration, or generate a log we which we can use to build Azure Alerts or feed into OMS. As of now, we had to create an AA runbook that pulls cert info on a schedule and alerts if necessary.
The Product Group is coming up with the support of managed identity for Automation to be used instead of Runas account with a tentative ETA of CY21 March-End. All our investments would be towards moving customers to use managed identity rather than RunAs. With the support of managed identity , customers would not have to worry about the overhead of certificate management.
We will , however , prioritize email notification for cert expiry if resourcing allows.
Bryan Stewart commented
This requirement would be a real help in avoiding manual work to track certificate renewals.
Iain Young commented
yes we have Automation accounts copying database jobs. this would be a great to have
[Deleted User] commented
isso deve ser implementado
Dominik Nolte commented
I do not understand that this requirement should be so extraordinary...
Many other companies have to face this problem as well
Kozak, Daniel commented
Any changes at Azure which require intervention from the clients should be communicated. In absence of intimation about manual certificate renewal caused our servers to not start as per the schedule.
Ravi Nomula commented
@Samuel , we have the same issue and i just voted. Can you share the runbook which pulls cert info and alerts please ...