Using wordpress on my personnel windows server.
I make an ssl cert 2 month ago. But the auto renew cron does not works automaticly.
So my certificate has expired yesterday.
Certbot certificates says :
Found the following certs:
Certificate Name: altifilm.fr
Serial Number: 36c584d8239cceac6f7e068452688756b4c
Key Type: RSA
Domains: altifilm.frddbsi.frplandrone.fr
Expiry Date: 2022-05-26 09:18:29+00:00 (INVALID: EXPIRED)
Certificate Path: C:\Certbot\live\altifilm.fr\fullchain.pem
Private Key Path: C:\Certbot\live\altifilm.fr\privkey.pem
When i do a certbot renew, all seems good in messages :
Processing C:\Certbot\renewal\altifilm.fr.conf
Renewing an existing certificate for altifilm.fr and 2 more domains
Congratulations, all renewals succeeded:
C:\Certbot\live\altifilm.fr\fullchain.pem (success)
And when after i ask for certificates : all seems ok :
Found the following certs:
Certificate Name: altifilm.fr
Serial Number: 36c584d8239cceac6f7e068452688756b4c
Key Type: RSA
Domains: altifilm.frddbsi.frplandrone.fr
Expiry Date: 2022-08-24 18:30:56+00:00 (VALID: 89 days)
Certificate Path: C:\Certbot\live\altifilm.fr\fullchain.pem
Private Key Path: C:\Certbot\live\altifilm.fr\privkey.pem
But when i ask my site, i still get err cert expired from all browsers.... Seems like the internet autority is not informed of my renewed certificate.
Is it really possible to renew a certif just after the day it has expired ?
If yes, whats going wrong.
Thanks, I restarded all the computer and system...
I dont remember the cerbot command i used to request the first time... it was 45 days old...
How show you the cerbot command options ?
I think youre looking for that :
SSLEngine on
SSLCertificateFile "${INSTALL_DIR}/ssl/certs/fullchain.pem"
SSLCertificateKeyFile "${INSTALL_DIR}/ssl/keys/privkey.pem"
SSLCertificateChainFile "${INSTALL_DIR}/ssl/certs/fullchain.pem"
Those files are effectivly the olds ... I dont know where cerbot generate the news
Certbot placed them here. It looks like you made a copy of them to the folder named by Apache. So, you need to copy them there again. Or, change your Apache to refer directly to the certbot live folder.
You put me on the right way, thanks Mike.
Cerbot is installed on C:, it genrates certs on C.
I missed that my copy for WP was on D:...
I was unable to find certs in LIVE directory. I found fullchain2 and provjky2 in archive directory.
I renamed it and copied it on D:....
Why live is empty ?
There should be symlinks in LIVE that point to the latest files in ARCHIVE. Normally you have your server use the file names in LIVE and those are always the latest.
I don't know Certbot and Windows all that well to know why the symbolic links would not exist. Did you run certbot with admin privileges?
LIVE as symlink shortlink,; yes, put they point to nothing.
I used the lasts fullchain and privkays in archive dir, and renamed and put it in my WP/ssl dir...
Thanks all is working now.