letsencrypt
https://letsencrypt.org - Let’s Encrypt is a new Certificate Authority:
It’s free, automated, and open.
Taken from:
Below is what I do now to get certs without stopping apache.in /etc/letsencrypt/cli.ini I have:
authenticator = webroot webroot-path = /var/www/ server = https://acme-v01.api.letsencrypt.org/directory domains = mydomain.foo renew-by-default agree-dev-preview
running LE:
./letsencrypt-auto --config /etc/letsencrypt/cli.ini auth
I will let cron run every 60 days to renew the certs.
I think thats the best solution for me at the moment.
Renew certs in my own servers
Run these commands in a terminal:
sudo su cd /opt/certbot/;./certbot-auto renew -n exit
If for some reason the output of the command indicates that nothing to renew yet, but you know that they are close to expiry deadline, and you won't be able to attend the renewal yourself when needed, and you don't trust the cron job yet, you can force the renewal by hand with:
sudo su cd /opt/certbot/;./certbot-auto renew -n --force-renewal exit
Seed: