Is there a step-by-step of what one should do to change from a working ACMEv1 to ACMEv2? I am very much a novice and am kinda scared I’ll mess something up and not know how to recover.
dick@debian9mail:~$ certbot --version
certbot 0.10.2
dick@debian9mail:~$ certbot-auto --version
bash: certbot-auto: command not found
dick@debian9mail:~$
Some of my questions are:
Do I need to apt-get install ACMEv2?
What command line would I run after that?
I’d be glad to provide any other info. It’s been long enough since I did the first Let’s Encrypt set-up (and especially since it’s worked so flawlessly) that I don’t recall what all was involved in getting it going the first time.
I moved your post to its own topic because I think that will make it easier for you to find help.
Not a problem Could you try to answer as many of the following questions as possible?
Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. crt.sh | example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.
My domain is:
I ran this command:
It produced this output:
My web server is (include version):
The operating system my web server runs on is (include version):
My hosting provider, if applicable, is:
I can login to a root shell on my machine (yes or no, or I don't know):
I'm using a control panel to manage my site (no, or provide the name and version of the control panel):
The version of my client is (e.g. output of certbot --version or certbot-auto --version if you're using Certbot):
Thanks for moving this thread to an appropriate location. I had a dickens of a time getting certbot to upgrade from version 0.10.x, but it seems I've got it now.
May I ask you though, will the default entry certbot's install routine made in /etc/cron.d/certbot be satisfactory for updating my certificates in a timely manner?
root@debian9mail:/etc/cron.d# cat certbot
# /etc/cron.d/certbot: crontab entries for the certbot package
#
# Upstream recommends attempting renewal twice a day
#
# Eventually, this will be an opportunity to validate certificates
# haven't been revoked, etc. Renewal will only occur if expiration
# is within 30 days.
#
# Important Note! This cronjob will NOT be executed if you are
# running systemd as your init system. If you are running systemd,
# the cronjob.timer function takes precedence over this cronjob. For
# more details, see the systemd.timer manpage, or use systemctl show
# certbot.timer.
SHELL=/bin/sh
PATH=/usr/local/sbin:/usr/local/bin:/sbin:/bin:/usr/sbin:/usr/bin
0 */12 * * * root test -x /usr/bin/certbot -a \! -d /run/systemd/system && perl -e
'sleep int(rand(43200))' && certbot -q renew
Many thanks for the Let's Encrypt service and your help here!