Back to All Scenarios
PASSEDserver / ssl_cert_expired
SSL Certificate Expired on Web Server
The SSL/TLS certificate on the public-facing customer portal expires at midnight. Chrome and Edge users see NET::ERR_CERT_DATE_INVALID. HSTS enforcement prevents bypass. API clients receiving TLS handshake failures. Revenue-impacting for e-commerce.
Pattern
CERTIFICATE_EXPIRY
Severity
CRITICAL
Confidence
95%
Remediation
Remote Hands
Test Results
| Metric | Expected | Actual | Result |
|---|---|---|---|
| Pattern Recognition | CERTIFICATE_EXPIRY | CERTIFICATE_EXPIRY | |
| Severity Assessment | CRITICAL | CRITICAL | |
| Incident Correlation | Yes | 22 linked | |
| Cascade Escalation | N/A | No | |
| Remediation | — | Remote Hands — Corax contacts on-site support via call, email, or API |
Scenario Conditions
IIS 10 web server. DigiCert OV certificate expired 2 hours ago. HSTS max-age 1 year. Public customer portal at portal.acmecorp.com. 5,000 daily users. API integrations with 12 partners.
Injected Error Messages (2)
SSL certificate expired on portal.acmecorp.com — certificate not valid after 2026-03-28T23:59:59Z, TLS handshake failure, browsers showing ERR_CERT_DATE_INVALID, HSTS preventing user bypass, DigiCert OV cert CN=portal.acmecorp.com expired
TLS handshake failures on API gateway — SSL certificate expired, partner API integrations returning SSL_ERROR_EXPIRED_CERT_ALERT, 12 B2B partners reporting connection failures, automated order processing halted
Neural Engine Root Cause Analysis
The SSL certificate for portal.acmecorp.com has expired as of 2026-03-28T23:59:59Z, causing TLS handshake failures and preventing all HTTPS connections to the customer portal. The expired DigiCert OV certificate is triggering ERR_CERT_DATE_INVALID errors in browsers, and HSTS policy is preventing users from bypassing the security warning. The 12 correlated incidents within the same time window suggest this certificate expiration is impacting multiple dependent services or monitoring endpoints that rely on the portal.
Remediation Plan
1. Immediately generate or obtain a new SSL certificate from DigiCert or alternative CA for portal.acmecorp.com. 2. Install the new certificate on the web server/load balancer serving portal.acmecorp.com. 3. Restart the web server or reload SSL configuration to activate the new certificate. 4. Verify certificate installation using SSL checker tools and test portal accessibility. 5. Update certificate monitoring to alert 30+ days before future expirations. 6. Investigate and resolve the 12 correlated incidents that may be dependent services affected by the portal downtime.
Tested: 2026-03-30Monitors: 2 | Incidents: 2Test ID: cmncjibj201qsobqewxgb64qy