Certbot Reload Nginx on cert renewal

Written by James McDonald

IT Tips

0 Comments(s)

November 18, 2023

https://github.com/toggenation/cert-checker

Recently I created a Cert Expiry Checker so I can be notified when my and my clients SSL certs are 27 days from expiry. What is strange is I got notified that a client on Squarespace has an SSL cert within 27 days of expiry and today one of my own websites alerted that the cert has less than 27 days till expiry.

I can’t do much about about the Squarspace SSL cert as their servers will continue to serve the low in life left cert but I can on my webserver.

So to get Let’s encrypt to reload nginx and thus start serving the recently updated cert:

cd /etc/letsencrypt
cp cli.ini.dpkg-dist cli.ini

Contents of cli.ini Add the deploy-hook line

# Because we are using logrotate for greater flexibility, disable the
# internal certbot logrotation.
max-log-backups = 0
# Adjust interactive output regarding automated renewal
preconfigured-renewal = True

deploy-hook = systemctl reload nginx

0 Comments

Submit a Comment

Your email address will not be published. Required fields are marked *

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

The reCAPTCHA verification period has expired. Please reload the page.

You May Also Like…

Robocopy exclude Directories

Jul 22, 2024

Just trying to copy everything except a couple of directories from a drive to my NAS This is the secret incantation of...