Which of the following is true about certificate expiration monitoring?
A.
Must be run manually.
B.
Must be run on the deployment manager.
C.
Deletes the certificates after they are expired, but does not replace them.
D.
Can replace expired certificates or certificates in the expiration threshold with a new certificate
Explanation:
Certificate monitor configuration settings can be configured on the administrative console by selecting Security
> SSL certificate and key management > Manage certificate expiration. . On the Manage certificate expiration
panel, you can perform the following functions.
Set the expiration threshold in the box labeled Expiration replacement threshold. The expiration
replacement threshold is the number of days before a certificate expiration that a certificate can be replaced
and has a default value of 60 days.
Delete the certificates after they are replaced by selecting the Delete expiring certificates and signers after
replacement box. This box is selected by default.
Etc.
https://www.ibm.com/support/knowledgecenter/en/SSAW57_7.0.0/com.ibm.websphere.nd.doc/
info/ae/ae/csec_sslcertmonitoring.html