IT/Software/Server Config/SSL Certificates/certbot: Difference between revisions

Access restrictions were established for this page. If you see this message, you have no access to this page.

Revision as of 05:08, 5 March 2020

Background
1. Get it from from here.
2. Their documentation is really well done.
3. Know what version you are on

apt-cache policy certbot | grep -i Installed

Install
1. You can install from the package maintaners version from 18.04 and on
2. I recommend the ppa version
  1. Certbot PPA=

sudo add-apt-repository ppa:certbot/certbot
sudo apt-get update

sudo certbot certificates

You will get a nice list of certs with their expiry dates.
Renewing Certificates
- This must be done every 90 days and can be done as much as 30 days early

sudo certbot renew

Force Renewal
- This can eat into your allotment so only do as needed
  - This needed to happen once due to a Lets Encrypt bug

sudo certbot --force-renewal

You still need to pick the domains and then choose to redirect https is you want.
- Normally we do want the forced redirect to https.

@@ Line 24: / Line 24: @@
 *Checking Certificates
-sudo certbot certificates
+<code>sudo certbot certificates</code>
+*You will get a nice list of certs with their expiry dates.
+*Renewing Certificates
+** This must be done every 90 days and can be done as much as 30 days early
+<code>sudo certbot renew</code>
+*Force Renewal
+** This can eat into your allotment so only do as needed
+*** This needed to happen once due to a Lets Encrypt bug
+<code>sudo certbot --force-renewal</code>
+*You still need to pick the domains and then choose to redirect https is you want.
+** Normally we do want the forced redirect to https.
 <br />