Sorry for this basic question.. how do I proceed to renew, I mean, what are the steps to follow?
My domain is: chandia.net
That really depends on a whole lot of factors. There is no "one size fits all" when it comes to ACME. Therefore, we really need answers to all of the questions of the questionnaire, even if that answer might be "I don't know":
My domain is: chandia.net
I ran this command:
It produced this output:
My web server is (include version):
The operating system my web server runs on is (include version):
My hosting provider, if applicable, is:
I can login to a root shell on my machine (yes or no, or I don't know):
I'm using a control panel to manage my site (no, or provide the name and version of the control panel):
The version of my client is (e.g. output of certbot --version or certbot-auto --version if you're using Certbot):
By the way, it seems you have valid certificates at this moment that are not yet due for renewal: crt.sh | chandia.net.
It also looks like the certificate for just the www subdomain (crt.sh | 14143515774) is superfluous with the certificate that's currently in use by your webserver (crt.sh | 14619228580). And that latter cert has about 2 weeks left before it's due for renewal.
So why do you think you need to renew now already?
Thanks for answering....
I have received an email saying:
Your certificate (or certificates) for the names listed below will expire in 6 days (on 2024-11-08). Please make sure to renew your certificate before then, or visitors to your web site will encounter errors.
We recommend renewing certificates automatically when they have a third of their total lifetime left. For Let's Encrypt's current 90-day certificates, that means renewing 30 days before expiration. See Integration Guide - Let's Encrypt for details.
It would be a great help for me if you, at least point me into the first step of the process...
Thanks again!
1 Like
Please review that email again in total and more carefully with the knowledge of the last part of my reply earlier. Thank you.
2 Likes
Thanks again, I'm not sure to have understood what you suggest me to do... but here I add some data (anyway it seems, by what you say, that I should not renew until the last day, is that so?):
My web server is (include version): Apache/2.4.58 (Ubuntu)
The operating system my web server runs on is (include version): Ubuntu 24.04.1 LTS
My hosting provider, if applicable, is: Saima Systems S. L.
I can login to a root shell on my machine (yes or no, or I don't know): YES
I'm using a control panel to manage my site (no, or provide the name and version of the control panel): NO
The version of my client is (e.g. output of certbot --version or certbot-auto --version if you're using Certbot): certbot 2.9.0
Thanks one more time!
1 Like
You used to get a cert that had ONLY the name www.chandia.net in it. It is due to expire soon and is the domain name listed in the email. But, you now use a cert with both your www subdomain and the apex name chandia.net in it. You got this cert on Sep 20.
You can see that at the history on crt.sh previously linked. And the pic of that below.
The email you received says you may get this warning if you have changed the mix of names in your cert. Which you have. If you don't use that cert with just your www name anymore you can ignore this warning. Your Apache doesn't use it for HTTPS requests to those names but we can't tell if you use it somewhere else (even on a private network).
3 Likes
This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.