| title | titleSuffix | description | author | ms.author | ms.service | ms.date | ms.topic |
|---|---|---|---|---|---|---|---|
SSL certificate asset filters | Defender EASM SSL certificate asset filters | This article outlines the filter functionality available in Microsoft Defender External Attack Surface Management for SSL certificate assets specifically, including operators and applicable field values. | danielledennis | dandennis | defender-easm | 12/14/2022 | how-to |
These filters specifically apply to SSL certificate assets. Use these filters when searching for a specific cert, or select group of certs.
The following filters provide a drop-down list of options to select. The available values are pre-defined.
| Filter name | Description | Value format | Applicable operators |
|---|---|---|---|
| Self Signed | Indicates whether the SSL certificate was self-signed. | True / False | EqualsNot Equals |
| Cert Expiration | The date when a certificate will expire. | Expired, Expires in 30 days, Expires in 60 days, Expires in 90 days, Expires in > 90 days | EqualsNot EqualsInNot In |
| Cert Validation | Indicates the method used to validate the cert, which is indicative of itss trustworthiness. | Domain, Organization, Extended | EqualsNot EqualsInNot InEmptyNot Empty |
The following filters require that the user manually enters the value with which they want to search. This list is organized by the number of applicable operators for each filter, then alphabetically.
| Filter name | Description | Value format | Applicable operators |
|---|---|---|---|
| Cert Key Size | The number of bits within a SSL certificate key. | 2048 | EqualsNot EqualsInNot InGreater Than or Equal ToLess Than or Equal ToBetweenEmptyNot Empty |
| Cert Key Algorithm | The key algorithm used to encrypt the certificate. | RSA | EqualsNot EqualsStarts withDoes not start withInNot inStarts with inDoes not start with inContainsDoes Not ContainContains InDoes Not Contain InEmptyNot Empty |
| Cert Serial Number | The serial number associated with a certificate. | 426f9c536bf46487c641d1fc20529b39bb3 | |
| Cert Signature Algorithm | The hash algorithm used to sign the certificate. | SHA256withRSA | |
| Cert Signature Algorithm Oid | The OID identifying the hash algorithm used to sign the certificate request. | 1.2.840.113549.1.1.5 | |
| Cert Issuer Alternative Name | Any alternative name(s) of the issuer of the certificate. | ZeroSSL ECC Domain Secure Site CA | EqualsNot EqualsStarts withDoes not start withMatchesDoes Not MatchInNot inStarts with inDoes not start with inMatches inDoes not match inContainsDoes Not ContainContains InDoes Not Contain InEmptyNot Empty |
| Cert Issuer Common Name | The common name of the issuer. | ZeroSSL ECC | |
| Cert Issuer Organization | The organization linked to the issuer. | GoDaddy.com, Inc. | |
| Cert Issuer Organizational Unit | Indicates the department within an organization that is responsible for the issuing of the certificate. | http://certs.godaddy.com/repository/ | |
| Cert Subject Alternative Name | Any alternative names for the subject (e.g. protected entity) of the SSL certificate. | www.host.contoso.com | |
| Cert Subject Common Name | The Issuer Common Name of the subject of the SSL certificate. | host.contoso.com | |
| Cert Subject Organization | The organization linked to the subject of the SSL certificate. | Contoso Ltd. | |
| Cert Subject Organizational Unit | Indicates the department within a subject organization that is responsible for the certificate. | Compliance |
