I originally installed certs on a particular system with certbot in manual mode. Situations have changed with that server and I’d like to do renewals with the nginx plugin. I’m not sure what the best practice is for this. Can I run certbot commands to make the needed changes? I can’t seem to find the best instructions if so.
I’m willing to do .conf file changes, but I’m curious if I can do something like revoke the current certificates, then run $ sudo certbot --nginx to get a new certificate? Are there any potential issues with this approach?
Thank you very much!
-Ken
My domain is: language.cs.ucdavis.edu
My web server is (include version): nginx/1.14.0 (Ubuntu)
The operating system my web server runs on is (include version): Ubuntu 18.04.4 LTS
My hosting provider, if applicable, is: N/A
I can login to a root shell on my machine (yes or no, or I don’t know): Yes
I’m using a control panel to manage my site (no, or provide the name and version of the control panel): No
The version of my client is (e.g. output of certbot --version or certbot-auto --version if you’re using Certbot): certbot 0.31.0
Cert not due for renewal, but simulating renewal for dry run
Plugins selected: Authenticator nginx, Installer nginx
Renewing an existing certificate
Performing the following challenges:
Attempting to renew cert (language.cs.ucdavis.edu) from /etc/letsencrypt/renewal/language.cs.ucdavis.edu.conf produced an unexpected error: None of the preferred challenges are supported by the selected plugin. Skipping.
All renewal attempts failed. The following certs could not be renewed:
/etc/letsencrypt/live/language.cs.ucdavis.edu/fullchain.pem (failure)
** DRY RUN: simulating ‘certbot renew’ close to cert expiry
** (The test certificates below have not been saved.)
All renewal attempts failed. The following certs could not be renewed:
/etc/letsencrypt/live/language.cs.ucdavis.edu/fullchain.pem (failure)
** DRY RUN: simulating ‘certbot renew’ close to cert expiry
** (The test certificates above have not been saved.)
