Appearance
LDAP and SSL Metrics
This page documents Prometheus metrics related to LDAP synchronization and SSL certificate monitoring for Yellowbrick platform components.
Purpose
These metrics are essential for tracking the status of two critical subsystems:
- LDAP Sync: Ensures that external user/group identities from LDAP are synchronized regularly and successfully. Metrics expose both sync state and failure reasons.
- SSL Certificate Expiry: Helps monitor expiration times of SSL certificates (e.g., for internal APIs or customer access endpoints) to prevent outages or security warnings.
These metrics are commonly used for setting up alerts to detect expired or soon-to-expire certificates and to troubleshoot authentication issues caused by sync failures.
Metrics
| Name | Type | Freq | Labels | Description |
|---|---|---|---|---|
yb_ldap_sync_status | gauge | 10s | status, reason | LDAP synchronization status as labels: INITIALIZING, NOT_CONFIGURED, SUCCEEDED, FAILED; 1 if active, else 0. |
yb_ssl_cert_expiry_seconds | gauge | 1d | certificate_name | SSL certificate expiration timestamp in epoch seconds |