Together with my IT colleagues, we try to integrate SSL certificate information from the scan results into our CMDB tool. To be more precise, each asset should then be assigned the certificates found by the scanner.
Thanks to the excellent documentation of the warehouse schema, I was able to locate the table in which the information is stored relatively quickly:
Afterwards I displayed the information in PowerBI in tabular form. The columns host_name, configuration_name and configuration_value were used accordingly. The idea we had was to export the required information via DB queries into a .csv file and feed it into our CMDB. So far, so simple.
Now we come to our problem. If the server has only one SSL certificate installed, the assignment of the information ssl.cert.not.valid.after and ssl.cert.not.valid.before is clear.However, if an asset has multiple certificates installed, then I have not seen any way to map the valid.after and valid.before information explicitly to one certificate (see print screen for example).
I would like to add that we have only been using Rapid7 Nexpose for about 2 months and my knowledge of the capabilities is not yet that advanced. I was wondering if someone from the community has already built something similar and could help me. It is quite possible that I missed a small detail.
Thanks in advance