Renewal procedure with standalone server (disabling apache2)

[quote="g305", post:8, topic:138328"]
certbot renew --dry-run --pre-hook "service apache2 stop" --post-hook "service apache2 start"
[/quote]

You was right! I made some test and finally I used this command
certbot renew --force-renewal --standalone --pre-hook "service apache2 stop" --post-hook "service apache2 start"

Now my renewal config file is
# renew_before_expiry = 30 days
version = 0.31.0
archive_dir = /etc/letsencrypt/archive/mydomain.one
cert = /etc/letsencrypt/live/mydomain.one/cert.pem
privkey = /etc/letsencrypt/live/mydomain.one/privkey.pem
chain = /etc/letsencrypt/live/mydomain.one/chain.pem
fullchain = /etc/letsencrypt/live/mydomain.one/fullchain.pem

# Options used in the renewal process
[renewalparams]
account = ***
authenticator = standalone
server = https://acme-v02.api.letsencrypt.org/directory
pre_hook = service apache2 stop
post_hook = service apache2 start
[[webroot_map]]
mydomain.one = /var/www/html

I don't know if the directive [[webroot_map]] is usefult (I think the answer is yes because it should be where cerbot's webserver puts his files to authenticate).

Thank you but I would prefer not using the apache2 plugin. (I installed it to use the default secure configuration of apache2).

Thank you very much!

4 Likes

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.