The CheckCentral API provides an endpoint for creating checks programmatically. All of the configuration options are available through the API, detailed below. To create a new check through the API, you will require an API token for your organization with Read/Write access. Organization administrators can create tokens through the API portal on your dashboard.

The endpoint is located at https://api.checkcentral.cc/createCheck/?apiToken=APITOKEN where the APITOKEN placeholder is replaced with your valid token. The request must be made with the Content-Type header set to application/json. The body of the request should contain as many of the properties listed below as required to define the check. Any properties not passed will be set to their default value.

For example, to create a new check that:

• Receives messages at the address "demo+apicheck@mycheckcentral.cc"
• Expects messages every two hours
• Expects messages only on weekdays
• Is set to Failure unless the message subject is "Message Success" or the message body has the text "No Errors Reported"

you would send the following json in the body of the request:

The check data must include a name property, as well as at least one of email_alias and matching_conditions to allow the check to be matched against incoming messages.

The complete list of possible properties for check configuration are as follows:

Check Structure

If you have websites that you're in charge of maintaining the SSL certificates for, you can monitor them for expiring certificates using this PowerShell script. The script can be run from anywhere, as it connects to the public URL for the website, and it will email the results wherever you like. You can set it up to email yourself, or you can configure it to email the results to CheckCentral so that you can automate the status parsing.

Setting Up the Check Schedule

1. On your CheckCentral dashboard, click the "New Check" link.
2. Give the Check a name. It can be whatever you like, for example "Website Certificate Expiry Check."
3. Choose an existing Check Group to add this check to, or create a new one if you like, by clicking "New Group."
4. For this guide, we'll assume that you're going to run the script every day. In order for CheckCentral to notify you when the Check is overdue (e.g. if the script didn't run as scheduled, or got hung up on its last run), you'll want to configure the "Emails are expected every" setting to "1 Day."
5. Notice that there's nowhere to assign the time of day that the email is expected. This is because CheckCentral will automatically adjust the expected time based on when the last email arrived. If your script runs at 9am and finishes at 9:01am today, then the next email will be expected at 9:01am tomorrow. In case the script runs slightly late one day, you can configure the Check to only notify you if the email is late by more than a certain amount of time. We'll leave it at the default of 30 minutes for this example, which means that you won't get an "Overdue" notification until 9:31am tomorrow. This allows an extra 30 minutes for the script to run before any action is taken.
6. The Description field is optional, but can be helpful for documentation purposes.

The Check Information Section

Configuring the Matching Rules

7. The "Matching Rules" section is where you'll tell CheckCentral which emails should be processed by this Check. By default, the Check's email address will be populated with a custom email address based on the Check name. For this example we'll change it to "demo+certexpirycheck@mycheckcentral.cc." You'll see where this gets used later in this guide.

The Matching Rules Section

Configuring the Status Rules

8. In the "Status" section, you'll set what you want the default status to be when an email matches the check, but doesn't match any of the Success/Warning/Failure rules. Generally it's best to leave this set to Failure, then specify your Success and Warning criteria. This way it's only marked as successful or warning if it matches your given rules, anything else is marked as a failure so that you get notified and can investigate further.
9. The "Success Rules" section is where you'll set the criteria that will mark the Activity as successful. Click the "Add Success Rule" link. A successful run (no certificates expiring soon) of the script will have the word "Success" in the email Subject, so we'll set the rule to "Subject contains Success"
10. The "Warning Rules" section is where you'll set the criteria that will mark the Activity as a warning. Click the "Add Warning Rule" link. The email notification for a the script will have the word "Warn" in the email Subject if one or more certificates are expiring soon, so well set the rule to "Subject contains Warn"

The Status Rules Section

Configuring Notifications

11. In the Notifications section, you can choose how to you want to be notified about changes to the status of this Check. In this example, enabling the checkbox for "Email" will send an email when the Check status changes, to everyone on the CheckCentral Organization > Users page that has Email notifications enabled. If there are consecutive Success emails, a notification won't be sent every time, only when the status changes from Success to Warning/Failure, and back.
12. Click the "Save Check" button to finish setting up this Check.

The Notifications Section

Setting Up the Script

13. Now that our Check is setup in CheckCentral, we'll need to setup the script on a machine that can run it every day. First, download the script: CheckWebsiteCertExpiry.zip, and extract it to somewhere on your computer. (e.g. C:\Scripts)
14. Go to the new folder (e.g. C:\Scripts\CheckWebsiteCertExpiry) and edit websites.txt with the list of websites you want to check. Make sure to put one URL on each line.
15. Open a PowerShell console and run the script to make sure it works. For example:
    .\CheckWebsiteCertExpiry.ps1 -Websites (Get-Content websites.txt) -EmailFromAddress <Email From Address> -EmailToAddress <Check Email Address from Step 7>
16. Now refresh the Check page for the Check you created and you should see the new Activity that was sent in by the script.
17. You're ready to setup the Windows Scheduled Task now, so that the script will run automatically every day. First, edit the parameters at the top of the "CreateScheduledTask.ps1" script and save the changes.
18. Open an administrative PowerShell console and run .\CreateScheduledTask.ps1.
19. If everything was successful, you should see the new Scheduled Task in the Windows Task Scheduler. Double-check that the schedule looks good, then run it and verify that a second Activity shows up in the CheckCentral Check.

As always, if you run into any trouble configuring your Checks, please feel free to contact us and we'll be glad to help out.

We're pleased to announce several updates to CheckCentral, with improvements to Check schedules and dashboard interaction.

We have streamlined the frequency settings for checks, with options for simple and advanced scheduling. With advanced schedules, you can now specify both a daily time window to expect emails, and choose which days of the week emails will be sent.

Advanced Check Frequency Settings

As well, check filters on your dashboard can now be bookmarked, as the filter will be remembered when refreshing the page or sharing the URL. Also, filtering the checks on your CheckCentral dashboard will only display checks from uncollapsed groups, solving an issue that resulted in displaying all checks from a group when uncollapsing it with filters applied.

Filtered Collapsible Dashboard Groups

Additionally, the CheckCentral Data API can now return the recent history of a check's activity if requested.

If you have feedback or questions about these updates or any aspect of CheckCentral, please let us know!

Comet Backup is an excellent tool for MSPs who manage file backups for their clients. By using CheckCentral and Comet Backup together, you can have a clear and easy view of your client backups without having to wade through mountains of email notifications. This guide provides details on setting up Checks for Comet Backup notification emails.

Identify the Check

1. On your CheckCentral dashboard, click the "+ Add Check" link.
2. Choose "Start Fresh" or "Copy settings from existing check:" (select a check from the dropdown menu with this option) and click "Start."
3. Give the Check a name. It can be whatever you like, but we would recommend something like: {comet username}: {protected item name}. For this example, the name will be "User01: Documents"
4. Choose an existing Check Group to add this check to, or create a new one if you like, by clicking "New Group."
Add a Label and Description if desired, and click "Next."

The Identification Section

Set the Check Schedule

5. For this guide, we'll assume this Comet Protected Item has a schedule assigned to it. In order for CheckCentral to notify you when the Check is overdue (e.g. if the Protected Item didn't run as scheduled, or got hung up on its last run), you'll need to configure how often you expect the email to come in. Typically you'll set the "Emails are expected every" values to match the schedule on your Protected Item. In our example, the Protected Item is set to run every day at 9am, so we'll set this to 1 Day(s).
6. Choose an Expected Interval for how often relevant emails should arrive (e.g., once a day can be entered as "1" and "Day(s).") CheckCentral will automatically adjust the expected email arrival time based on when the last email arrived. (If your Protected Item runs at 9am and finishes at 9:15am today, then the next email will be expected at 9:15am tomorrow.)
7. Since the amount of time a backup takes to complete can vary day-to-day, you can configure the Check to only notify you if the email is late by more than a certain amount of time. We'll leave it at the default of 30 minutes for this example, which means that you won't get an "Overdue" notification until 9:45am tomorrow. This allows an extra 30 minutes for the backup to complete before any action is taken.
8. Click "Next."

The Schedule Section

Configure Matching Rules

9. The "Matching" section is where you'll tell CheckCentral which emails should be processed by this Check. By default, the Check's email address will be populated with a custom email address based on the Check name. Since email notification addresses are set per-user in Comet, you'll want to click the checkbox next to "Use email address specific to this check:" and enter something more generic for that Comet user in the available field. In this example we'll enter "cometuser01," changing it to "demo+cometuser01@mycheckcentral.cc." (You'll see where this gets used later in this guide.)
10. Click "Next."

The Matching Section

Set the Default Status and Success/Warning Criteria

11. In the "Status" section, you'll set what you want the default status to be when an email matches the check, but doesn't match any of the other rule criteria. Generally it's best to leave this set to Failure, then specify your Success and Warning criteria. This way it's only marked as successful or warning if it matches your given rules. Anything else is marked as a failure so that you get notified and can investigate further.

The Status Section
12. The "Success Criteria" area is where you'll set the criteria that will mark the Activity as successful. Click the "Add Success Rule" link. A successful run of a Comet Protected Item will have the word "Success" in the email Subject, so we'll set the rule to "Subject contains Success"
13. The "Warning Criteria" area is where you'll set the criteria that will mark the Activity as a warning. Click the "Add Warning Rule" link. The email notification for a Comet Protected Item will have the word "Warning" in the email Subject, so well set the rule to "Subject contains Warning"
14. Click "Next."

The Success/Warning Rules Areas

Configure Notifications

15. In the "Notifications" section, you can choose how to you want to be notified about changes to the status of this Check. In this example, enabling the checkbox for "Email" will send an email when the Check status changes, to every user with proper access level and Email notifications enabled.

The Notifications Section
16. Notification Channels are organization-wide notification options. By default, all optional channels are shown but only ones configured on the Notifications > Organization page will function. Select and Deselect channels as desired.
17. External Ticketing Systems can be integrated with CheckCentral to create and manage tickets for particular Activity. Like Notification Channels, all options will be listed but only those configured will function. These options are under Notifications > External Ticketing Systems. Select and Deselect External Ticketing Systems as desired.

The Notifications Channels and External Ticketing Systems Areas
18. Select additional notification options for status restoration, Activities processed outside expected arrival times, on repeated Failures, and if Failures are allowed a grace period, giving an opportunity to cancel a Failure notification if the Check Status has be restored to Success.
19. Click "Next."

The Notifications Options Areas
20. Select processing options as desired, and click "Save Check."

The Save Section

Configure Comet

21. Now that our Check is setup in CheckCentral, we'll need to configure Comet to send its emails to CheckCentral for this user (User01). In the Comet admin interface, go to Accounts > Users > User01, and add the email address for the CheckCentral check that you created in step 7, and make sure to click the "Save Changes" button.

Adding Email Address to Comet User

Test it Out

22. Now we're ready to run the Protected Item to test it out. Go ahead and run your Comet Protected Item manually.

The Comet Backup UI
23. After the job is done running, if you refresh the Check page, you'll see the new Activity listed in the "Recent Activity" section. You can also see a new Activity dot for it on the main Dashboard for your organization.

The Recent Activity Section

The Main Dashboard
24. Clicking the Activity's dot on the Check page or the Dashboard will show the email contents in a modal dialog.

The Activity Details

As always, if you run into any trouble configuring your Checks, please feel free to contact us and we'll be glad to help out.

We're happy to announce updates to both the Activities and Stats pages! The searching and filtering on these pages has been improved and expanded, with new and more detailed options available.

The Activities page now provides the ability to filter activities by group, date range, and even the source of the activity: email messages, overdue activities, user-set statuses, or updates from the CheckCentral API.

Updated Activities page filtering

The Stats page has also been updated to allow filtering by the activity source, as well as by only a specific check. As always, any search on the Stats page can be saved as a PDF or CSV format report.

Updated Stats page filtering

We hope these updates will make it even easier and more convenient to find and report on only the information that is important to you!

We're excited to announce a recent update to the Manage Checks page for CheckCentral. Reordering Groups is now much faster and easier, with all your groups displayed in one place in a sidebar. You can also drag and drop checks directly on the group in the sidebar to move them between groups. In addition, the page and its content have been streamlined to improve the performance and responsiveness for organizations with large numbers of checks.

We hope this update will make it faster and easier to manage your checks. If you have feedback or questions, please let us know!

Updated Manage Checks page

Drag and drop checks between groups

Today we're happy to announce that we've added another two-factor authentication (2FA) method. In addition to the current SMS 2FA method, you can now choose to use time-based one-time password (TOTP) 2FA instead, allowing you to get your 2FA codes through your favourite authentication app.

The TOTP method will work with any app the supports TOTP, including Google Authenticator, Duo, Authy, and more! With TOTP you also get an upgrade in security for your 2FA codes, since they can't be intercepted like SMS messages.

If you've already got SMS 2FA enabled, you'll get a prompt when logging in that suggests switching to TOTP. You'll have to disable SMS 2FA first, then setup TOTP. All of the 2FA configuration is done on your account page: https://www.checkcentral.cc/Account/

TOTP on the Account Edit Page

We highly recommend enabling TOTP 2FA on your account for better security, and as always, if you run into any trouble at all, please don't hesitate to contact us.

We're excited to announce a number of updates to CheckCentral!

We've added the ability to collapse groups on your dashboard to make it easier to see only the information you need to see. The groups you collapse will be remembered whenever or wherever you login to CheckCentral!

A sample CheckCentral dashboard showing collapsed groups.

Repeated Failure Notifications

New options for failure notifications give you more control over when you are alerted about the status of your checks. A check with a configured "failure notification grace period" will wait to send alerts until the specified time has elapsed. If the check returns to success before the alert is sent, it will be canceled.

The repeated failure option provides several options to control failure notifications when a Check receives multiple consecutive failures:

• Notify on every failure: this will send an alert every time a failure message is processed by CheckCentral
• Notify on first failure: this will only send an alert for the first of any consecutive failure messages
• Notify on every failure after N consecutive failures: this will send alerts for every failure message after the limit is reached
• Notify on every N consecutive failures: this will send alerts every time the specified number of failures are processed in a row, e.g. with a setting of "3", you would receive alerts for every 3rd, 6th, 9th failure, and so on

Configuration options for repeated failure notification

Newly Created Check Activity

As well, newly created checks will now have an initial starting activity (set to Success). This will allow the check to become marked overdue once the specified interval has elapsed. To leave the check in a neutral state that will not become overdue until a message has been received, you can delete that created activity.

Newly created check with an initial activity.

In addition to these notification updates, we have also made several UI improvements and fixes, including the text for overdue check alerts and organization logos on PDF reports. If you have feedback or question about any of these updates, or anything else, please let us know!

We're excited to announce the new "setCheckStatus" endpoint for the CheckCentral API! This is the first writable endpoint for the API. SetCheckStatus allows authenticated requests to update the status of a specific check. As well, the request can include an associated message, and optionally send alert notifications for the check as well.

A test call to the setCheckStatus endpoint

Only API tokens that are configured with Read/Write access will be able to make requests to this endpoint. Existing API tokens are set as "Read Only", with all the same permissions they currently have. You can modify a token's access level on your organization's API token management page, available under the "Organization" menu for organization administrators.

Creating a Read/Write API Token

Stats CSV Export

As well as the API update, we've also included the option for CSV export on your organization's stats page. Any search on the stats page can be saved as a CSV report by clicking the "Save CSV" button.

Save Stats Page Reports as CSV

If you have any feedback, suggestions, or questions about the API or CheckCentral in general, please let us know!

We're happy to announce that we have expanded the options for generating PDF reports! PDFs for individual checks can now be generated with activity history for a custom date range, and to cap the displayed history to a configured limit.

As well, you can now generate PDF reports from the Organization Stats page. To help with creating reports, the stats page also provides the option to only display stats for a specific check group. Please let us know if you have any feedback!

In addition, we have released an update to iOS notifications to improve performance and reliability.

PDF Check Report

Stats Page Filtering

PDF Stats Report