I got an email this morning regarding the SSL cert expiring in 10 days. Please find the email message below.
I am an amateur developer. I followed many documentation online, nothing helped me. Can anyone help on this? I do not want my site down as many of my clients are viewing the site on a daily bases.
“
Your certificate (or certificates) for the names listed below will expire in
10 days (on 18 Mar 18 20:17 +0000). Please make sure to renew
your certificate before then, or visitors to your website will encounter errors.
”
Let’s Encrypt certificates have a 90 day duration.
If your developer had manually issued it, then it’s not going to renew itself. But if your developer had used some client software (such as Certbot) to set it up, then it should be automatically renewing, but it is possible that the process could be failing for some reason.
I would try find out what your developer did, so you can figure out what to do next.
Just one more query, I get this “The SSL certificate used to load resources from https://embedwistia-a.akamaihd.net will be distrusted in M70. Once distrusted” error in the console.
It seems Google will distrust my site. WIll the renew fix this as well?
Second command (/opt/letsencrypt/certbot-auto renew), gave me following error:
All renewal attempts failed. The following certs could not be renewed:
/etc/letsencrypt/live/blog.oysteer.co.nz/fullchain.pem (failure)
1 renew failure(s), 0 parse failure(s)
IMPORTANT NOTES:
The following errors were reported by the server:
Domain: blog.oysteer.co.nz
Type: unknownHost
Detail: No valid IP addresses found for blog.oysteer.co.nz
To fix these errors, please make sure that your domain name was
entered correctly and the DNS A/AAAA record(s) for that domain
contain(s) the right IP address.
To fix these errors, please make sure that your domain name was
entered correctly and the DNS A/AAAA record(s) for that domain
contain(s) the right IP address. Additionally, please check that
you have an up-to-date TLS configuration that allows the server to
communicate with the Certbot client.