How to renew wildcard cert with cert-bot auto


#1

Hi All,

I am pretty new to lets encrypt and have a question. I set up a certificate for *.overlord.network and overlord.network. I ran the command to do the initial set up:

./certbot-auto --server https://acme-v02.api.letsencrypt.org/directory -d *.overlord.network -d overlord.network --manual --preferred-challenges dns-01 certonly

I did have to do some set up to the DNS record for the challenges by setting up TXT records.

My question is, when the certificate is up in 90 days, how do I renew it? Will I have to do the TXT records again?

My domain is: overlord.network

My web server is (include version): Apache (xampp)

The operating system my web server runs on is (include version): Ubuntu 16.04

My hosting provider, if applicable, is: self hosted

I can login to a root shell on my machine (yes or no, or I don’t know): yes


#2

By re-running the same command.

Yes.

If your DNS host has an API that works with an available plugin for certbot, you could automate this in the future.


Dns-01 challenge not working for wildcard cert
#3

It would be very helpful if your DNS provider would have some sort of API, so you can automate the adding and removal of the TXT records. If it does, you could write two scripts (one for the adding, one for the removing) and use those scripts with the manual plugin so it can be automated.

If you can use those scripts, you can run certbot-auto renew. If not, you’ll have to re-run the same command as you did before (like @danb35 said), as renew will only run without error if it doesn’t need manual input.


Dns-01 challenge not working for wildcard cert
#4

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.