Loading...
 
Page actions
PDF Print Open in WebDAV

letsencrypt

https://letsencrypt.org - Let’s Encrypt is a new Certificate Authority:
It’s free, automated, and open.

Taken from:

https://community.letsencrypt.org/t/le-client-needs-to-bind-to-port-80-which-im-already-using/2739/19

Below is what I do now to get certs without stopping apache.in /etc/letsencrypt/cli.ini I have:
 
authenticator = webroot                                                                                                                        
webroot-path = /var/www/                                                                                                                       
server = https://acme-v01.api.letsencrypt.org/directory                                                                                        
domains = mydomain.foo                                                                                                                       
renew-by-default                                                                                                                               
agree-dev-preview


running LE: 

xxxxxxxxxx
 
./letsencrypt-auto --config /etc/letsencrypt/cli.ini auth

I will let cron run every 60 days to renew the certs.

I think thats the best solution for me at the moment.

 

Renew certs in my own servers

Run these commands in a terminal: 

xxxxxxxxxx
 
sudo su
cd /opt/certbot/;./certbot-auto renew -n
exit


If for some reason the output of the command indicates that nothing to renew yet, but you know that they are close to expiry deadline, and you won't be able to attend the renewal yourself when needed, and you don't trust the cron job yet, you can force the renewal by hand with: 

xxxxxxxxxx
 
sudo su
cd /opt/certbot/;./certbot-auto renew -n --force-renewal
exit

Image Seed: noun \ˈsēd\ : the beginning of something which continues to develop or grow

Knowledge seeds

Switch Language