We’ve been running certbot-auto on a AWS Linux instance for several months now and it is automatically updating.
However, we recently encountered an issue where a few hours after an auto-update an an external SAML system started throwing errors saying “SAML Message has wrong signature”. After a few more hours, the problem disappeared.
I suspect the external system was caching old certificate information and if I could force certbot-auto to update the certificate 2 days before expiry, the problem may not happen again. However, I cannot find any info on the interweb.
My domain is: mylink.stpetersgirls.sa.edu.au
I ran this command: /opt/certbot-auto renew --no-self-upgrade
It produced this output: the usual…
My web server is (include version): NGINX 1.10.2
The operating system my web server runs on is (include version): Amazon Linux AMI release 2017.03
My hosting provider, if applicable, is: Amazon
I can login to a root shell on my machine (yes or no, or I don’t know): Yes
I’m using a control panel to manage my site (no, or provide the name and version of the control panel): No.