Valid until|Mon, 09 Apr 2018 23:13:12 UTC (expired 17 hours and 59 minutes ago) EXPIRED|
I ran certbot renew and it says it does not need to be renewed
I ran certbot renew --force-renewal and restarted apache after both commands but it does not seem to do anything.
You’ve issued four new certs for this domain today–you’re about to run into a rate limit. If you’ve restarted apache since issuing them, apparently your server configuration isn’t pointing to the right cert. What’s the output of certbot certificates?
That is the only one in live and renew folders the apache conf is pointing to:
Include /etc/letsencrypt/options-ssl-apache.conf
SSLCertificateFile /etc/letsencrypt/live/www.gmrgold.com-0002/fullchain.pem
SSLCertificateKeyFile /etc/letsencrypt/live/www.gmrgold.com-0002/privkey.pem
If Apache is actively using some of the files there, deleting them now will break it.
Deleting them afterwards would be good, though.
In the future, you can use "certbot delete --cert-name www.gmrgold.com-0001" and so forth to delete the renewal file and live and archive directories simultaneously.
By doing sudo crontab -e, I can see the following certbot crontab task: 15 3 * * * /usr/bin/certbot renew --quiet --renew-hook "/bin/systemctl reload nginx"
However, when I do sudo /bin/systemctl reload nginx, I get the following error: Failed to reload nginx.service: Unit nginx.service not found.
I tried every single command to restart Nginx I can find on the Internet, but every single one of them fail!!
I found it! Since my Nginx had been installed with the gitLab package, I had to replace the "/bin/systemctl reload nginx" post-hook in the crontab task by "gitlab-ctl restart nginx".