Lets Encrypt Certificate ended on 2017-01-31 how to continue?


#1

I am running NAS Synology DS916+.
I create a Lets Encrypt certificate and is running fine.
The Certificate ended on 2017-01-31.
QST How I have to run this certificate after 2017-01-31?

PLS Advice…

Thx Rob72


#2

How did you get it initially? Usually it’s just the same process.


#3

I follow the instruction of synology
https://www.synology.com/en-us/knowledgebase/DSM/help/DSM/AdminCenter/connection_certificate


#4

From that link

Certificates issued by Let’s Encrypt are valid for 90 days. Before the
certificates expire, DSM will automatically renew such certificates
after successful domain validation. Please make sure your Synology NAS
and router have port 80 open for certificate renewal.


#5

Super, I forwarding port 80
Thx for your quick advice.

Rob72


#6

I put the following code in my crontab to run the renew script.

30 2 1, 1,3,5,7,9,11 * /opt/letsencrypt/letsencrypt-auto renew >> /var/log/le-renew.log

This runs it at 2:30am on the first day of January, March, May, July, September, November
it also audits and outputs success to a log.


#7

The renew command doesn’t do anything if it’s not time to renew the certs, so it might be more robust to just run it daily. This helps prevent lapses if there is a problem renewing for a short period. By default, it will try to renew when there are less than 30 days left before expiry, giving you several weeks to detect an issue and correct it.


#8

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.