This issue is additional work associated with the annual X509 certificate renewal we do. Before revoking the old certificates, we need to ensure the new ones are in use.

Last February, awood1@redhat.com wrote a Spring Actuator endpoint to display the certificate information, but the endpoint was configured incorrectly. Specifically, the endpoint worked fine over JMX but was misconfigured for HTTP. Since JMX is no longer available, we need to fix the misconfiguration.