Renew without a webserver?

TheDudeAbides · April 28, 2017, 8:57pm

I’m mainly wanting to use the cert for email.
Got it installed on a test RasPi. Plan on moving it over once I feel comfy.
I do not run a web server here (at least internet facing) So I need to poke a hole or two in the firewall. Not wanting to leave them open, is there an option to renew without having a web server running?
I could probably script something up. (rather not)
I had installed them with the --standalone option if that matters.

TIA!

schoen · April 28, 2017, 9:28pm

Hi @TheDudeAbides,

The --standalone option does not require a web server running, but it does require the ability to connect to port 443 or port 80. If you don’t want that, you should use the DNS-01 authentication method (probably with a bash-based client rather than Certbot, due to better support in those clients).

Topic		Replies	Views
To renew certificate must stop any service using port 443? Help	9	2722	October 5, 2017
Certbot renew as standalone with server running	2	4155	June 18, 2016
Is a web server required to renew a cert? Server	2	786	May 6, 2018
Standalone certificate vs. httpd Help	7	1580	June 9, 2023
How to renew with webroot? Help	4	12390	November 12, 2018

Renew without a webserver?

Related topics