Hey folks
Within the last few days my SCOM console has become besieged by warning alerts for "Invalid certificates". It seems to be something buggy to do with Azure certs being issued to on-premise servers, I don't need these certs, and for now all I want is to get rid of the noise from the console (Until I can determine the origin and reason these Azure certs started coming down)
I'm pretty new to SCOM, so I'm learning. I found a blog where it hinted at using a regex on a monitor, I think that was it, to ignore *discovery* of Certificate stores with specific cert issuers in them. Apparently this is new behaviour in newer versions of SCOM
Now, what I actually want is for the SCOM agent to ignore/not report on certificates that were issued by the *MS Organisation P2P" issuer, what I DONT want is to find that the entire Personal Store gets ignored by the agent on a given server.
Can someone point me further in the right direction on how to accomplish my aim, which is essentially to just stop reporting on certs issued by one specific issuer? (All the cert names are different unfortunately, as is the thumbprint, and they get issued to various Server OS types so I cant block at those levels I don't believe.
Any guidance much appreciated folks.
Coop