Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. https://crt.sh/?q=example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.
My domain is:
I ran this command:
It produced this output:
My web server is (include version):
Apache/2.4.39 & Tomcat
The operating system my web server runs on is (include version):
Ubuntu Linux 16.04
My hosting provider, if applicable, is:
Running Bitnami Wordpress on an AWS vm
I can login to a root shell on my machine (yes or no, or I don’t know):
I’m using a control panel to manage my site (no, or provide the name and version of the control panel):
The version of my client is (e.g. output of
certbot --version or
certbot-auto --version if you’re using Certbot):
Apologies for the poorly worded title. The gist is that I want to be sure that I know when my files are expiring so that I can get the renewal process fully automated on this particular server. The cause of this issue is likely my own wrongdoing, when I erroneously generated too many certificates (https://check-your-website.server-daten.de/?q=affinity-iot.com#ct-logs).
On my site, affinity-iot.com, we have a tomcat servlet which requires a bundle.pfx file to bind on 8443 in order for customers to securely submit requests. I used the following as a reference to put this together: Using let's encrypt with tomcat
In the /live/domain directory, I see that the cert.pem, fullchain.pem, etc. are timestamped Nov 19, which means they are likely to expire on or around Feb 19. Bundle.pfx makes use of these files, and when they expire, our customers will see an expired cert warning on the site which I want to avoid. However, if you click on the padlock on the site, we are due to expire March 12. I want to be able to ensure that these files will expire in synch with the cert that my site is using for https. This way, I can get their renewals in one cron entry. I’d rather not have to worry about the key used for my servlet expiring in February and the key for the site expiring in March. Please let me know if I can provide any further information. I am rather new when it comes to the topic of SSL.
Thank you so much!