Hi,
i´m running Debian Stretch with Postfix and i wanna know you can i renew the Mail-Server-Cert?
At my cron there is only one for the Webserver, i thought that both where renewing, once a month.
15 00 * */1 * certbot -q renew
Bye
Timm
Hi,
i´m running Debian Stretch with Postfix and i wanna know you can i renew the Mail-Server-Cert?
At my cron there is only one for the Webserver, i thought that both where renewing, once a month.
15 00 * */1 * certbot -q renew
Bye
Timm
They should be the same cert if they are the same domain.
If you created both using Certbot on the machine where that cron is then the renew step will (try to) renew both certificates.
Certbot renew means “check if any certificates expire in the next 30 days, if so renew them”.
For this reason, you should usually choose to run this more often, Let’s Encrypt recommends twice per day, in order that it will get to try again if there’s a transient error (e.g. loss of network connectivity) before expiry.
Hi,
So it should renew it on on January.
OK, thanks.
Timm
Something might indeed be wrong because if you run certbot renew
and it finds a certificate with fewer than 30 days of validity, it should attempt to renew it. This should be the case for your mail.tms-it.net
certificate. It should not wait until January.
What do you see if you run certbot renew
directly on the command line?
That actually runs once a day, not once a month - */1
is the same as *
so yeah, this should have renewed already.
This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.