Perpetual Renewal - The web site runs already a Let's Encript Certifcate - I am trying to figure out how to set up a perpetual renewal, which is already in place on another web site I run - which works through ACME challanges

Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. https://crt.sh/?q=example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.

My domain is:https://andreapiga.com/

I ran this command:

It produced this output:

My web server is (include version): Apache Version 2.4.46

The operating system my web server runs on is (include version): linux

My hosting provider, if applicable, is: 3ix

I can login to a root shell on my machine (yes or no, or I don’t know):

I’m using a control panel to manage my site (no, or provide the name and version of the control panel):Yes

The version of my client is (e.g. output of certbot --version or certbot-auto --version if you’re using Certbot):

Automatic SSL renewal is a built-in feature in cPanel (AutoSSL).

Have you tried asking your web host whether they can enable it for you?

Thanks for answering - The thing is that I am trying to figure out how it works - On a different web site I run, the perpetual renewal I think has been activated without any action on my end. I can see it because on the DNS there are several ACME challanges text (which I think they trigger renewal) and they have been set up automatically - In this web site I d like to have the same activation but I don’t understand how the automation is activated having done absolutely nothing to have automated on this other web site https://virtus-elementis.com/

I think that’s ultimately a question for your web host.

With shared hosting, the ACME automation/integration is usually done on the level of the hosting platform (cPanel or something else).

As such, only your web host would be able to tell you what’s available, and how you can use it.

It is a good sign, though, that your other website already has it activated. It suggests that you can quite likely get it enabled for all your sites. It’s just a question of finding out how.

It does appear, though, that somebody has been using sslforfree.com to manually issue the certificates for that other site. If you look at http://virtus-elementis.com/.well-known/acme-challenge/, you can see the test files which have been dropped there via FTP.

Thanks! That’s correct, in fact once using ssslforfree, I was not enabled (as usual) to copy the bundle of the certificate onto the C panel ssl creation and I tried to upload it via FTP. After I requested my host provider to enable copying the bundle onto C panel and I was able to create it.
So, your guess is that when I tried to renew the certificate via ftp…this has triggered the auto renewal without any voluntary action on my end?

It wouldn't be possible to do that purely by FTP. I encourage you to ask your host about it, though. They will know for sure ...

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.