Help with Certbot and ACME v2

Is there a step-by-step of what one should do to change from a working ACMEv1 to ACMEv2? I am very much a novice and am kinda scared I’ll mess something up and not know how to recover.

dick@debian9mail:~$ certbot --version
certbot 0.10.2
dick@debian9mail:~$ certbot-auto --version
bash: certbot-auto: command not found

Some of my questions are:
Do I need to apt-get install ACMEv2?
What command line would I run after that?

I’d be glad to provide any other info. It’s been long enough since I did the first Let’s Encrypt set-up (and especially since it’s worked so flawlessly) that I don’t recall what all was involved in getting it going the first time.

I apologize for my ignorance,

Dick Rempfer

1 Like

Hi @rempfer, welcome to the community forum :wave:

I moved your post to its own topic because I think that will make it easier for you to find help.

Not a problem :slight_smile: Could you try to answer as many of the following questions as possible?

Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g., so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.

My domain is:

I ran this command:

It produced this output:

My web server is (include version):

The operating system my web server runs on is (include version):

My hosting provider, if applicable, is:

I can login to a root shell on my machine (yes or no, or I don’t know):

I’m using a control panel to manage my site (no, or provide the name and version of the control panel):

The version of my client is (e.g. output of certbot --version or certbot-auto --version if you’re using Certbot):

Thanks for moving this thread to an appropriate location. I had a dickens of a time getting certbot to upgrade from version 0.10.x, but it seems I’ve got it now.

May I ask you though, will the default entry certbot’s install routine made in /etc/cron.d/certbot be satisfactory for updating my certificates in a timely manner?

root@debian9mail:/etc/cron.d# cat certbot
# /etc/cron.d/certbot: crontab entries for the certbot package
# Upstream recommends attempting renewal twice a day
# Eventually, this will be an opportunity to validate certificates
# haven't been revoked, etc.  Renewal will only occur if expiration
# is within 30 days.
# Important Note!  This cronjob will NOT be executed if you are
# running systemd as your init system.  If you are running systemd,
# the cronjob.timer function takes precedence over this cronjob.  For
# more details, see the systemd.timer manpage, or use systemctl show
# certbot.timer.

0 */12 * * * root test -x /usr/bin/certbot -a \! -d /run/systemd/system && perl -e 
'sleep int(rand(43200))' && certbot -q renew

Many thanks for the Let’s Encrypt service and your help here!

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.