π₯οΈ Dashboard
Dashboard is the main screen in SecTrail CM that provides a comprehensive view of your system status and certificate inventory.
Overviewβ
After logging in, you'll encounter the dashboard which consolidates the status of all certificates in your infrastructure, security metrics, and system information on a single screen. The dashboard includes:
- π Real-time certificate metrics and status reports
- π Security vulnerability analysis and TLS/SSL configuration status
- β οΈ Alarm system with expiring certificate warnings
- π Visualized reports for easy monitoring
SecTrail CM Main Dashboard - System Overview
π System Metricsβ
At the top of the dashboard, you'll find metrics showing the overall system status:
| Metric | Description |
|---|---|
| System Uptime | System continuous operation time |
| System Current Time | Current system time |
| System OS Version | Operating system version (SSL Manager v2.6.9) |
| Used Disk | Percentage of disk space used |
These metrics allow you to monitor system performance and resource usage in real-time.
π Dashboard Charts and Reportsβ
The dashboard offers various charts that visualize the status of certificates in your infrastructure:
π― Certificate Status Chartsβ
π Certificate Summary Reportβ
Shows the general status of certificates by category:
- β Valid - Valid certificates
- π‘ Expiring within 60 days - Will expire within 60 days
- π Expiring within 30 days - Will expire within 30 days
- π΄ Expired - Expired certificates
π Certificate Signature Typesβ
Shows the distribution of certificate signature types used. Modern and secure algorithms (RSA-SHA256, ECDSA-SHA256) should be preferred. Legacy algorithms (RSA-SHA1, MD5) pose security risks.
π Certificate Key Sizesβ
Shows the distribution of certificate key sizes. A minimum of 2048-bit RSA or 256-bit ECC keys is recommended. 1024-bit and smaller keys are not secure.
π Security and Protocol Chartsβ
| Chart | Description |
|---|---|
| TLS Versions Used On Hosts | Distribution of TLS versions used on hosts (TLS 1.3, TLS 1.2, TLS 1.1, TLS 1.0) |
| TLS Ciphers Used on Hosts Top 10 | Most commonly used TLS cipher suites |
| TLS Fallback Used on Hosts | TLS Fallback SCSV usage status (Vulnerable/Not Vulnerable) |
| OpenSSL Heartbleed | Heartbleed (CVE-2014-0160) vulnerability detection |
| OpenSSL CCS Injection | CCS Injection (CVE-2014-0224) vulnerability detection |
β οΈ Security Vulnerability Chartsβ
| Chart | Description |
|---|---|
| Robot Attack Used on Hosts | ROBOT attack security status detection |
| Deflate Compression Used on Hosts | TLS compression (CRIME attack) vulnerability status |
| Session Resumption Used on Hosts | TLS session resumption mechanism usage status |
| Session Renegotiation Used on Hosts | TLS session renegotiation security configuration |
Alarm Tableβ
At the bottom of the dashboard, there is a detailed table showing the alarm statuses of certificates in your infrastructure:
Dashboard Alarm Table - Certificate Warnings and Status Information
-
Subject - Certificate subject (CN, O, OU information)
-
Subject Alternative Names - Alternative domain names (SAN). Shows all domains for which the certificate is valid.
-
Host - Server/host address where the certificate is used (IP address or hostname)
-
Issuer - Certificate Authority (CA) that issued the certificate (e.g., Let's Encrypt, DigiCert, Sectigo)
-
Progress - Progress status in the certificate lifecycle. Shown with a visual progress bar.
-
Alert Days - Number of days until certificate expiration β° Critical warning time
π¨ Alarm Color Codesβ
The alarm table visually shows certificate status with colors:
| Color | Status | Action |
|---|---|---|
| π΄ Red | Expired or very soon to expire certificates | CRITICAL - Immediate action required |
| π Orange/Yellow | Certificates expiring within 30-60 days | WARNING - Plan renewal |
| π’ Green | Valid certificates with long expiry | NORMAL - In good condition |
Regularly check the alarm table on the dashboard. Plan urgent actions for red or orange certificates and initiate renewal processes.
π Understanding and Interpreting Chartsβ
The charts on the dashboard provide valuable insights about your certificate security and infrastructure status.
π Certificate Status Monitoringβ
Pay attention to priority levels to understand certificate statuses:
- β Valid - Normal monitoring period, no cause for concern
- β οΈ Expiring within 60 days - Start renewal planning, contact vendor
- π Expiring within 30 days - High priority, urgent renewal process should be initiated
- π΄ Expired - CRITICAL STATUS - Service interruption risk, immediate action required
:::
SecTrail CM provides automatic notification system for critical situations. You can receive instant alerts by configuring email and integration settings.