RDP TLS cert monitoring

Hi,

How do I have Xymon monitor the TLS cert used by RDP?

I can easily get the cert using the following commands:

    openssl s_client -connect <IP>:3389 < /dev/null |& openssl x509 -noout -startdate -enddate

I'd like to apply the same type of logic to RDP that the HTTPS tests use for certificate expiration warning / critical.

I skimmed the hosts.cfg manual and didn't find a way to monitor TLS for arbitrary ports.

I also don't think that the static [rdp] entry in protocols.cfg can be extended to monitor dynamic TLS information.

Any guidance would be appreciated.


-- 
Grant. . . .
unix || die