Having looked into this a bit further I think it might actually not be possible. Nrpe checks run as the nagios user and the ovn certs have the following permissions:
# ll /etc/ovn/ total 24 dr-xr-xr-x 2 root root 4096 Jun 23 13:07 ./ drwxr-xr-x 101 root root 4096 Jul 3 12:44 ../ -rw-r----- 1 root root 1532 Jun 23 13:07 cert_host -rw-r----- 1 root root 1674 Jun 23 13:07 key_host -rw-r--r-- 1 root root 1244 Jul 3 10:50 ovn-central.crt -rw-r----- 1 root root 211 Jun 23 13:07 ovn-northd-db-params.conf
So an nrpe check cannot read the cert file unless its permissions are opened up which I assume is not what anyone wants to do.
Having looked into this a bit further I think it might actually not be possible. Nrpe checks run as the nagios user and the ovn certs have the following permissions:
# ll /etc/ovn/ db-params. conf
total 24
dr-xr-xr-x 2 root root 4096 Jun 23 13:07 ./
drwxr-xr-x 101 root root 4096 Jul 3 12:44 ../
-rw-r----- 1 root root 1532 Jun 23 13:07 cert_host
-rw-r----- 1 root root 1674 Jun 23 13:07 key_host
-rw-r--r-- 1 root root 1244 Jul 3 10:50 ovn-central.crt
-rw-r----- 1 root root 211 Jun 23 13:07 ovn-northd-
So an nrpe check cannot read the cert file unless its permissions are opened up which I assume is not what anyone wants to do.