Hi all!

Please help with the following information.

I installed CertBot.exe for Windows.

Everything worked out, the program creates certificates, they work.

But I want to automate certificate renewal. I created a .bat/cmd script for this.

Now I need additional information so that the script always works without problems.

1. My subdomain https://pay.site.com/ (for which the certificate was created and installed) has limited access, the restriction is made by IP address in the .htaccess file (for Apache).

I need to allow CertBot.exe servers to connect to a sub-domain when checking, for example,

https://pay.site.com/.well-known/acme-challenge/1hW9пGSw9tF7Bg6QNaYr6zes-8Djfh90MtM_aogуйF1

What IP addresses and/or networks should be added (belonging to CertBot) to the .htaccess file?

Order deny,allow

[My]

Allow from 1.2.3.4

Allow from 5.6.7.8

[/My]

[certbot]

Allow from ?.?.?.? Which IPs are needed?

Allow from ?.?.?.? Which IPs are needed?

[/certbot]

Deny from all

2. How long are these domain links valid?

https://pay.site.com/.well-known/acme-challenge/1hW9пGSw9tF7Bg6QNaYr6zes-8Djfh90MtM_aogуйF1

How long time/days?

I noticed that if I create certificates once and then 20 minutes later, I do not need to create these files/links again.

But after some time, these files/links become invalid and CertBot.exe asks me to create these files/links again.

Sincerely,

Dmitriy

You should avoid using Certbot on Windows for new setups.

The EFF dropped support for windows last month

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.