Ubuntu 16: lets encrypt, certbot, cron

By admintech

https://certbot.eff.org/lets-encrypt/ubuntuxenial-nginx

request wildcard certificate
sudo certbot --server https://acme-v02.api.letsencrypt.org/directory -d *.hensler.net --manual --preferred-challenges dns-01 certonly

certbot --nginx (adds nginx configuration for SSL)
sudo certbot certonly --manual -d '*.hensler.net' --dry-run

sudo certbot certonly --manual -d '*.hensler.net'
>> update .txt for _acme-challenge.hensler.net in route53
sudo service nginx restart
sudo certbot certificates
Saving debug log to /var/log/letsencrypt/letsencrypt.log

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Found the following certs:
  Certificate Name: hensler.net
    Domains: *.hensler.net
    Expiry Date: 2020-06-30 10:54:02+00:00 (VALID: 89 days)
    Certificate Path: /etc/letsencrypt/live/hensler.net/fullchain.pem
    Private Key Path: /etc/letsencrypt/live/hensler.net/privkey.pem
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
systemctl list-timers
NEXT                          LEFT         LAST                          PASSED       UNIT                         ACTIVATES
Wed 2020-04-01 09:39:00 CEST  18min left   Wed 2020-04-01 09:09:03 CEST  11min ago    phpsessionclean.timer        phpsessionclean.service
Wed 2020-04-01 10:23:06 CEST  1h 2min left Tue 2020-03-31 23:58:58 CEST  9h ago       motd-news.timer              motd-news.service
Wed 2020-04-01 16:27:23 CEST  7h left      Wed 2020-04-01 03:23:00 CEST  5h 57min ago apt-daily.timer              apt-daily.service
Wed 2020-04-01 17:18:16 CEST  7h left      Tue 2020-03-31 17:18:16 CEST  16h ago      systemd-tmpfiles-clean.timer systemd-tmpfiles-clean.service
Wed 2020-04-01 19:07:54 CEST  9h left      Wed 2020-04-01 07:47:10 CEST  1h 33min ago certbot.timer                certbot.service
Thu 2020-04-02 06:17:06 CEST  20h left     Wed 2020-04-01 06:27:22 CEST  2h 53min ago apt-daily-upgrade.timer      apt-daily-upgrade.service

6 timers listed.
Pass --all to see loaded but inactive timers, too.
sudo vim /var/log/letsencrypt/letsencrypt.log
2020-04-02 04:17:48,957:DEBUG:certbot.main:certbot version: 0.31.0
2020-04-02 04:17:48,958:DEBUG:certbot.main:Arguments: ['-q']
2020-04-02 04:17:48,958:DEBUG:certbot.main:Discovered plugins: PluginsRegistry(PluginEntryPoint#manual,PluginEntryPoint#nginx,PluginEntryPoint#null,PluginEntryPoint#standalone,PluginEntryPoint#webroot)
2020-04-02 04:17:48,971:DEBUG:certbot.log:Root logging level set at 30
2020-04-02 04:17:48,971:INFO:certbot.log:Saving debug log to /var/log/letsencrypt/letsencrypt.log
2020-04-02 04:17:48,982:DEBUG:certbot.plugins.selection:Requested authenticator and installer
2020-04-02 04:17:48,992:INFO:certbot.renewal:Cert not yet due for renewal
2020-04-02 04:17:48,993:DEBUG:certbot.plugins.selection:Requested authenticator manual and installer None
2020-04-02 04:17:48,993:DEBUG:certbot.renewal:no renewal failures

Leave a Reply

Your email address will not be published. Required fields are marked *