KQL Search

Query Details

Show Expired Certificates On Device

Query

Use Case: Identifying expired certificates to prevent security vulnerabilities and ensure continuous encrypted communication.

Query:

Certificate
| where ValidToDateTime < now()
| project ValidToDateTime, SubjectName, CommonName

Explanation

The query is looking for expired certificates in order to prevent security issues and ensure that encrypted communication is uninterrupted. It selects the expiration date, subject name, and common name of the certificates.

Details

Ugur Koc

Released: February 4, 2024

Tables

Certificate

Keywords

Certificate,ValidToDateTime,SubjectName,CommonName

Operators

|where<now()project

KQL Search

Show Expired Certificates On Device

Query

Explanation

Details

Actions