search

VincentSaelzler / hyper-homelab

A foray into hyper-converged architecture.
GNU General Public License v3.0
0 stars 0 forks source link

certbot: confirm renewals work #174

Open VincentSaelzler opened 2 years ago

VincentSaelzler commented 2 years ago

there are some messages in /etc/cron.d/certbot that indicate renewals might now work

This cronjob will NOT be executed if you are running systemd as your init system

also why is the group that runs it called test?

0 */12 * * * root test -x /usr/bin/certbot -a \! -d /run/systemd/system && perl -e 'sleep int(rand(43200))' && certbot -q renew
VincentSaelzler commented 2 years ago

this will be slightly different now since using ansible role from jeff gerling

VincentSaelzler commented 2 years ago

After running the certbot role:

root@proxy:~# crontab -l
#Ansible: Certbot automatic renewal.
20 4 * * * certbot renew --quiet --no-self-upgrade

seems like it should work.

Running the command certbot renew --quiet --no-self-upgrade doesn't report an error, but it also doesn't try to renew because the certs are not expiring.