Had a customer request a way of being able to report on / be notified of VPN certificates that were going to expire soon so they could avoid any outages.
Script is designed to run on a Check Point management server (SMS & MDS supported).
The script can be run manually, or setup as a cron job.
It will produce a CSV output showing all certificates (only keeps 7 days history to not use up disk space), and if configured to email it will email certificates that will expire within the look ahead window (default - 60 days)
Full instructions can be found here:
Script and smtp_settings file are broken apart to allow a user to download and overwrite the script without breaking the email configuration to make it easy to update.
Thanks to @Igor_Demchenko for posting a script, some of which was integrated into this one.