acme.sh issue, cert date invalid, but no errors from letsencrypt
freebsd at boosten.org
freebsd at boosten.org
Sun Mar 7 17:31:20 UTC 2021
> Op 7 mrt. 2021, om 17:48 heeft David Mehler <dave.mehler at gmail.com> het volgende geschreven:
>
> I've also looked at the file creation date they're the new certs
> issued yesterday, but checking them with openssl shows as I said the
> not after november 2020 date.
>
> Suggestions welcome.
So let’s retrace everything. I’ve been looking at my setup.
I check by cron if new certs are available, daily. If acme.sh finds new certs, in puts them in
/var/db/acme/certs/<domain.tld>/
There are now other directories in there, it always overwrites old ones with new ones.
I then use Dan Langille’s anvil-port to pull them to my jails (sent-puller, also by cron), where they are stored in
/usr/local/etc/ssl of that jail.
After putting them there, cert-puller automatically restarts the service(s) that rely on the certs. Of course, all my applications point to those certs.
Please describe your setup.
Peter
—
It never hurts to help
- Eek the Cat!
More information about the freebsd-questions
mailing list