Expired Cert - AWS Lightsail

athyg · June 16, 2022, 10:03pm

2022-06-16T14:00:00Z
I suspect I'm having the same issue attempting to renew my certificate on my WordPress website hosted on AWS LightSail. Based on messages, renewal was successful, but when I run a manual check available via the Really Simple SSL WordPress plugin, it's showing the previous renewal date.

webprofusion · June 17, 2022, 2:46am

Your current certificate did indeed expire a couple of months ago. You mentioned "based on messages, renewal was successful" but where are you seeing these?

Whichever tool you are using to renew your certificate files, the webserver you are using (Apache) needs to point to the latest version of the files, so it sounds like it's currently pointing to an old file instead. Fixing it would require you find out where the files are being updated and edit your Apache config to point to these. If you are using a wordpress plugin you may find it useful to update the plugin or remove and add it again.

Osiris · June 17, 2022, 6:13am

I can see a new certificate issued last Wednesday indeed: crt.sh | 6943112655

However, as @webprofusion mentions, it's not being used by the actual webserver.

Could you perhaps tell us more about the entire process of getting a certificate and how you configured that certificate in your webbrowser the first/last time?

Note that usually the whole getting, installing and renewing a Let's Encrypt certificate is fully automated, but maybe your hosting provider doesn't offer such a solution. Many hosting providers do actually. A fully working and renewing certificate should not be an issue for you as a customer anno 2022, at least that's my opinion.

linkp · June 17, 2022, 2:36pm

Amazon Lightsail is a VPS offering which effectively makes the customer their own hosting provider responsible for implementing their Let's Encrypt in an appropriate manner that suits their needs. It's no different than using Let's Encrypt on Digital Ocean or any other VPS.

While it is extremely powerful and flexible, it does require that the VPS customer to set everything up correctly on their own.

Osiris · June 17, 2022, 3:02pm

So AWS Lightsail is always a VPS? Good to know!

That makes it even more important to know how @athyg has set everything up on that VPS Which webserver, how is everything installed, all the possible controle panels et cetera et cetera.

linkp · June 17, 2022, 3:27pm

Yup. Lightsail is Amazon's name for their VPS offering. With the breadth of their catalog, it can be overwhelming to follow. Filing Lightsail in the same mental box as DO Droplets, Vultr, Linode, etc. led me to remembering it more easily.

athyg · June 18, 2022, 5:10am

Here are the AWS instructions for installation of Let's Encrypt on a WordPress site hosted on Lightsail, which I've attempted to follow: Tutorial: Using Let’s Encrypt SSL certificates with your WordPress instance in Amazon Lightsail | Lightsail Documentation

Initial installation wasn't an issue, but renewal always seems to bring me unstuck.
Any recommendations for troubleshooting assistance; I'd like to automate the certificate renewal process to eliminate the need for manual intervention. Has anyone developed this solution for LightSail.

9peppe · June 18, 2022, 7:53am

Whatever you do, do not follow that tutorial.

Use this other one: Enabling HTTPS on your WordPress instance in Amazon Lightsail | Lightsail Documentation

Osiris · June 18, 2022, 7:59am

Ahh, Bitnami, horrendous.. I agree with @9peppe, when using Bitnami it's better to use its own tool(s).

webprofusion · June 20, 2022, 1:05am

Hmm, my interpretation of the term VPS was where there is one OS and it uses techniques and special software to partition the same OS for multiple users. I've got a few lightsail linux instances and they're just a standard (aws ec2) VM with a limited set of options and easy setup.

linkp · June 20, 2022, 2:36am

VPS just means Virtual Private Server. It is effectively a marketing term for selling a dedicated OS instance to the customer abstracted from the hardware running it. The product page for Amazon Lightsail uses the ful term in the page title and the acronym in the page text. The product FAQ page goes into futher detail on the term. I feel pretty comfortable referring to Lightsail as a VPS offering.

MikeMcQ · June 20, 2022, 2:44am

Yeah, I agree. AWS even calls EC2 a "virtual server". Terms have sure gotten blurry.

webprofusion · June 20, 2022, 2:57am

Thanks, I think my interpretation of VPS is old fashioned and clearly it's interchangeable with VM now.

system · July 20, 2022, 2:58am

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.