hpr3295 :: Renewing a Let's Encrypt cert for Home Network use

Ken Fallon
Language: English
Source:
Now Playing

1/1hpr3295

00:00
00:00
1x
1 Chapter(s)
  • 1. hpr3295

About

Summary: How to update a cert when the automatic processes don't work

Source: [http://hackerpublicradio.org/eps.php?id=3295](http://hackerpublicradio.org/eps.php?id=3295)

Original audio: [http://archive.org/download/hpr3295/hpr3295\_source.wav](http://archive.org/download/hpr3295/hpr3295\_source.wav)

Back in hpr3289 :: NextCloud the hard way, I showed you how to install a Let's Encrypt SSL cert for use on your home network. One of the problems was the fact that the automatic renew tools won't work.

Today I got a reminder email from Let's Encrypt and I used the exact same command to renew it as I did to create it in the first place. The tool is smart enough to know this is a renewal process.

One thing I forgot to do last time was to remove the TXT record from DNS after I was done. So I had to delete the record and wait a while for the Time To Live (TTL) to expire.

I set about doing a check list so the next time the process can be even faster.

  1. Run the command

certbot certonly --manual --preferred-challenges dns

  1. Deploy a DNS TXT record under the name _acme-challenge.nextcloud.example.com

  2. Finish the challenge.

  3. When successful, remove the DNS TXT record as it's not needed for another two months.

Comments

Log in to comment

Be the first to comment

There aren't any comments on this content yet. Start the conversation!

Tags: hpr3295 :: Renewing a Let's Encrypt cert for Home Network use audio, hpr3295 :: Renewing a Let's Encrypt cert for Home Network use - Ken Fallon audio, free audiobook, free audio book, audioaz

Advertisement