"Re-using" an existing certificate

L4Y · October 24, 2023, 4:37pm

I'm running a server with Docker container and installed the certificate inside the container.
Sometimes I have to upgrade the server which means deleting the current container and running a new one with the new version. I've linked the "/etc/letsencrypt" folder with the host folder and when starting the new server, when I enter "certbot certificates" it shows me the certificate that I've created on the previous server but now I want to use this certificate on a new one. How can I do it without deleting and generating a new SSL?

9peppe · October 24, 2023, 5:15pm

What happens if you run certbot install inside the container?

I mean, is there certbot inside the container?

You can install the same certificate in however many containers you want, even at the same time.

Osiris · October 24, 2023, 5:23pm

Simply migrate the /etc/letsencrypt/ directory over. While doing so, make sure you're keeping the symbolic links intact.

rg305 · October 24, 2023, 6:05pm

That is an option...
But they would have to remember to migrate it back before upgrading [replacing the docker container with the latest directory info].

If they just link to that directory, then they can forget to migrate and still be OK.

I think I would prefer just using the @9peppe method:

[once for each cert in use]

Osiris · October 24, 2023, 6:49pm

The certbot install command is only used with the apache and nginx plugins and often those webservers are running in different Docker containers so that won't work, as the installer plugins won't work.

I'm also not sure if that's what OP is asking.

9peppe · October 24, 2023, 6:59pm

That's where my doubt comes from.

And yet, the old principle "one service per container" is "not always" adhered to. (Mostly when people use containers to distribute software)

rg305 · October 25, 2023, 12:15am

Difficult to say what is going on here...
Is the glass half empty OR half full?
OR maybe both!

Yes, we are agreed, certbot install will only work if certbot can reach the web server config files.

rg305 · October 25, 2023, 12:22am

If you read between the lines:

You can almost see that they do have certbot running within the same Docker container.
OR do they?

L4Y · October 25, 2023, 7:14am

Yes, the certbot is inside the container and yes, certbot install works for me. I was looking for this command with certbot --help but didn't find it. Knowing that I can save the SSL and use on another container.
Thank you!

rg305 · October 25, 2023, 9:12am

You can find it ALL here:
User Guide — Certbot documentation (eff-certbot.readthedocs.io)

system · November 24, 2023, 9:13am

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Running Certbot in docker and renewing other docker container Help	5	15787	March 18, 2022
Moving cerbot to docker Help	10	564	July 18, 2023
Certbot in container - renew -? Help	4	1483	February 28, 2022
Self-contained dockerized Certbot installation Help	4	767	April 23, 2020
Can't reuse letsencrypt certificate in httpd docker Help	2	1292	December 5, 2020

"Re-using" an existing certificate

Related topics