Letsencrypt auto renew?

Morphy · May 19, 2017, 9:46pm

Oh while you are here Bate - how do i update the LE?

bate · May 19, 2017, 9:51pm

This will update the cert

Morphy · May 19, 2017, 9:52pm

Ahh perfect

Thanks for the help guys - very much appreciated .

Morphy

Stiffy · May 30, 2017, 4:56pm

Just want to check if only me but this doesnt work.
I’ve PMed JMSolo few hours ago as he was the one that installed the quickbox DNS for me, but it doesnt seem to autorenew. He states it should on the day it expires, but it didnt. Now when i go to dashboard, i first get an error page (Not secure) with error message NET::ERR_CERT_DATE_INVALID.
I also looked in my crontab -e and i do have these

30 0 * * * "/root/.acme.sh"/acme.sh --cron --home "/root/.acme.sh" > /dev/null
30 2 * * 1 ~/acme.sh/acme.sh --cron --home ~/acme.sh > /dev/null
30 2 * * 1 ~/acme.sh/acme.sh --cron --home ~/acme.sh > /dev/null

but now the day after it expired i have an unsecure site.
Do note i have not touched anything with this dns stuff, everything is after jmsolo installed it for me from my order. Anyone can help?

Stiffy · May 31, 2017, 3:02pm

Forgot to mention the solution, as JMSolo autorenew doesnt work.
If you need to renew, just sign in to root ssh and write

/root/.acme.sh/acme.sh --renew -d domain.quickbox.io

Dont forget to stop apache2 first and start it after when done.
Now my site is secure via https again.

JMSolo · May 31, 2017, 5:34pm

I answered your PM. The problem is the duplicate entries you have in your cron, not necessarily the lack of domain. It will automagically find the cert and update accordingly.

ondansetron · February 28, 2018, 7:29am

I wanted to post an update as none of the above solutions worked for me. It seems that the issue with auto-renew is related to apache2 not being stopped by acme.sh when it attempts to renew. I get the following error when I attempted manual renewal using bash ~/acme.sh-master/acme.sh --renew -d mydomain.com

[Wed Feb 28 02:24:01 EST 2018] LISTEN     0      128         :::80                      :::*                   users:(("apache2",pid=10843,fd=4),("apache2",pid=10842,fd=4),("apache2",pid=10841,fd=4),("apache2",pid=10840,fd=4),("apache2",pid=10828,fd=4),("apache2",pid=10824,fd=4),("apache2",pid=3772,fd=4),("apache2",pid=3771,fd=4),("apache2",pid=3770,fd=4),("apache2",pid=3766,fd=4),("apache2",pid=3761,fd=4),("apache2",pid=3011,fd=4))
[Wed Feb 28 02:24:01 EST 2018] tcp port 80 is already used by 80
[Wed Feb 28 02:24:01 EST 2018] Please stop it first
[Wed Feb 28 02:24:01 EST 2018] _on_before_issue.

So i stopped the apache2 service manually (systemctl stop apache2.service) then ran the above command, it successfully renewed letsencrypt. I restarted apache2 manually as well and it’s working.

bate · February 28, 2018, 10:35am

system · March 3, 2018, 10:35am

This topic was automatically closed 3 days after the last reply. New replies are no longer allowed.