Transfer data packets safely
with PRTG SSL monitoring
- PRTG uses SSL and TLS protocols to check devices
- PRTG monitoring data can be accessed via SSL
- Individual SSL certificates can be imported
PRTG determines the extent to which your connections are protected
Safe data transmission via the Internet or the company network is one of the fundamental aspects of IT security. The instruments used to ensure safe data transmission are the hybrid cryptographic protocols Transport Layer Security (TLS) and its predecessor, Secure Sockets Layer (SSL). In order to transfer data safely, IT administrators must know which encryption possibilities are available to devices at any given time.
To avoid sending data via unsecured connections, SSL monitoring checks your devices for their SSL/TLS capabilities. To do so, PRTG has developed the SSL Security Check Sensor, which tests the selected device for its possibilities of being accessed via these security protocols. You can therefore learn if your connections are strong, weak, or not protected at all.
PRTG also lets you use SSL to encrypt your own monitoring data. For even this data may contain sensitive information, information which must be protected against unauthorized access while being sent across the company network. Individual SSL certificates can be imported for this purpose.
With PRTG, everyone will work with peace of mind.
This short video explains
SSL certificate monitoring
Data collected by PRTG:
SSL/TLS protocol versions accepted on a device’s port
How SSL monitoring with PRTG works
What is a sensor?
In PRTG, “sensors” are the basic monitoring elements. One sensor usually monitors one measured value in your network, e.g. the traffic of a switch port, the CPU load of a server, the free space of a disk drive. On average you need about 5-10 sensors per device or one sensor per switch port.
Device Port Sensor
The sensor on the device’s port establishes whether it can connect to the protocol (“accepted”) or if the connection is “denied,” and based on this information provides a sensor status:
- SSL 2.0: weak security (“warning” if accepted, "up” if denied)
- SSL 3.0: weak security (“warning” if accepted, "up” if denied)
- TLS 1.0: weak security (“warning” if accepted, "up” if denied)
- TLS 1.1: strong security (“up” if accepted, otherwise “gray”)
- TLS 1.2: perfect security (“up” if accepted, otherwise “gray”)
SSL Security Check Sensor
The SSL Security Check Sensor monitors Secure Sockets Layer (SSL) connectivity on a chosen port on your device.
This sensor attempts to connect to various SSL/TLS protocol versions using the device’s specific TCP/IP port number, and returns a value that corresponds to whether or not the respective protocol is supported.
The security rating displays the connection security of the selected port by way of one of the following statuses:
- Down: No security protocol is available. The sensor is unable to connect to any of the protocols.
- Warning (weak): The sensor is able to connect to at least one of the weak protocols SSL 2.0, SSL 3.0, or TLS 1.0.
- Up (strong): The sensor is only able to connect to one of the strong protocols TLS 1.1 or TLS 1.2. Connections to weak protocols are not possible.
This type of sensor uses lookups to determine the status values of one or more sensor channels. This means that the possible statuses are defined in a lookup file. You can change the behavior of a channel by editing this lookup file. For more details, see: Define lookups.
Additional information on this topic can be found in our knowledge base: How do you determine the protocol security ratings of the SSL Security Check sensor?
A sneak peek into SSL monitoring with PRTG
Quickly see which devices support which encryption
– even while on the go
PRTG can be started within minutes and it's compatible with many mobile devices.
Four good reasons
to choose PRTG as your SSL monitoring tool
Ensure secure data traffic
Constant monitoring guarantees that security loopholes due to insufficient SSL/TSL capabilities are eliminated as quickly as possible.
Secure an overview
Our dashboard provides a convenient overview of the status of the encryption that is supported by your devices’ ports.
Stay in the know
If the security rating changes, you’ll be notified at once, wherever you happen to be.
Instead of checking device ports individually, you can simply rely on the PRTG sensors and notifications.
Trusted by 300,000 users
and recognized by industry analysts as a leader
- Unlimited version of PRTG for 30 days
- After 30 days, PRTG reverts to a free version
- Or, you can upgrade to a paid license anytime
“Our network engineers really love PRTG, because of its customization”
John Krull, CTO, Oakland Unified School District, USA
PRTG makes your job easier!
Let our SSL monitoring software work for you.
Thanks to PRTG, you can go about your day-to-day tasks with peace of mind.
PRTG saves time
With PRTG, you get one centralized SSL monitoring tool. Enjoy a quick and complete overview at all times via our dashboard and app.
PRTG saves worry
Monitor the SSL connectivity of your devices, conveniently and around the clock. The built-in alarm feature is quick to send out notifications, which means you can rest assured that
all is well.
PRTG saves money
Over 95% of our customers recommend PRTG
Paessler AG worldwide trialled PRTG in over 600 IT departments.
The aim was to tune the network monitoring software closer to the needs of the administrators.
The result of the survey: over 95% of the participants would recommend PRTG - or already had.
“Our top priority is to continue to develop PRTG is a constant, practical, and proactive manner. Our hope is that administrators will always be ready for any new standards which arise.”
Dirk Paessler, founder of Paessler AG in Nuremberg
Want to read more? Please do!
Website monitoring: Is your website always available? Are all its key processes operational? Are its load times increasing? With PRTG, you can monitor the worldwide availability of your website with the HTTP and Cloud HTTP sensors. The same goes for your servers and entire IT infrastructure.
Ping Monitoring: PRTG uses ping to check the availability of all your network devices. If the ping fails, you will be notified immediately.
Active Directory Monitoring: PRTG offers integrated complete Active Directory Monitoring in real time. Find out more about Active Directory Auditing here.
VPN Monitoring: PRTG monitors VPN connections and measures traffic, load, and the number of users. Identify connection problems and suspicious traffic.
PRTG: The Swiss Army knife for sysadminsAdapt PRTG individually and dynamically to your needs relying on a strong API:
- HTTP API: Access monitoring data and manipulate monitoring objects using HTTP requests
- Custom Sensors: Create your own sensors for customized monitoring
- Custom Notifications: Create your own notifications to send alarms to external systems
- REST Custom Sensor: Monitor almost everything that provides XML or JSON
Still not convinced?
More than 300,000 sysadmins love PRTG
PRTG is used by companies of all sizes. Sysadmins love PRTG because it makes their job a whole lot easier.
Still not convinced?
Monitor your entire IT infrastructure
Bandwidth, servers, virtual environments, websites, VoIP services – PRTG keeps an eye on your entire network.
|Network Monitoring Software - Version 184.108.40.2063 (July 6th, 2021)|
|Download for Windows and cloud-based version PRTG Hosted Monitor available|
|English, German, Spanish, French, Portuguese, Dutch, Russian, Japanese, and Simplified Chinese|
|Up to 100 sensors for free (Price List)|
|Network devices, bandwidth, servers, applications, virtual environments, remote systems, IoT, and more|
Supported Vendors & Applications