How to renew my certificate

HI.
I just took over the project
The SSL cert expired,
We just updated all software on the server
Media temple,
Ubuntu 16.04 - LTS Xenial
I access server ssh command line No
we were running on auto renew,
We updated all software and went from Ubuntu 14 to 16.
I found a file : ssl-cert 1.0.37 “simple debconf wrapper for OpenSSL”
How do I get the SSL cert going again.
I can login to a root shell on my machine yes
tku

The version of my client is (e.g. output of certbot --version or certbot-auto --version if you’re using Certbot):

Hi @mickeymann1

please share your setup.


Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. https://crt.sh/?q=example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.

My domain is:

I ran this command:

It produced this output:

My web server is (include version):

The operating system my web server runs on is (include version):

My hosting provider, if applicable, is:

I can login to a root shell on my machine (yes or no, or I don’t know):

I’m using a control panel to manage my site (no, or provide the name and version of the control panel):

The version of my client is (e.g. output of certbot --version or certbot-auto --version if you’re using Certbot):

1 Like

My domain is: www,brewgle.xyz

I ran this command: got email Let’s Encrypt certificate expiration

It produced this output:

My web server is (include version):

The operating system my web server runs on is (include version):Ubuntu 16.04 - LTS Xenial

My hosting provider, if applicable, is: Media temple

I can login to a root shell on my machine YES

I’m using a control panel to manage my site (no, or provide the name and version of the control panel): No using filezilla, putty

The version of my client is ssl-cert 1.0.37 “simple debconf wrapper for OpenSSL”

Hi @mickeymann1,

I looked up ssl-cert and it doesn’t seem like it’s a tool for managing Let’s Encrypt certificates in particular. Is it possible that you mistook the purpose of this software because it happened to be installed on this server?

Is there any indication of what software was used to obtain the certificates before? For example, is Certbot or acme.sh installed on this server somewhere? Do you have an /etc/letsencrypt directory?

HI… yes I do . I found the etc folder and open it and found the letsencrpyt folder. What should I do next ? Tku

Hi,

Can you try to run certbot renew or ./certbot-auto renew to see the outputs?

Also, certbot certificates to see if the certificate is already renewed.

Thank you

I opened the renewal folder, this is the file below

renew_before_expiry = 30 days

cert = /etc/letsencrypt/live/brewgle.xyz/cert.pem
privkey = /etc/letsencrypt/live/brewgle.xyz/privkey.pem
chain = /etc/letsencrypt/live/brewgle.xyz/chain.pem
fullchain = /etc/letsencrypt/live/brewgle.xyz/fullchain.pem
version = 0.39.0
archive_dir = /etc/letsencrypt/archive/brewgle.xyz

Options used in the renewal process

[renewalparams]
authenticator = apache
installer = apache
account = aaccc92346633bd4ba5aaf6b7a689218
server = https://acme-v02.api.letsencrypt.org/directory

Now it would be useful to run the commands suggested above by @stevenzhu.

1 Like

HI
when I run
/ cert bot renew " is a directory"
./certbot-auto renew “no such file or directory”
certbot certificates “is a directory”

what is the next step ? I appreciate your help. tku

Are you sure you didn’t put a slash before certbot in the command certbot certificates?

The only one of these commands that ought to have a slash anywhere in it is ./certbot-auto renew and it’s fine that that one didn’t happen to work.

I entered “certbot certificate” and came back with command not found

Tks for the help.
I was missing the certbot file,
installed updated and ran the
certbot and all worked

1 Like

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.