I am Nick Lang

So today is the day I had to renew my Let's Encrypt certs. Unfortunately, it wasn't as easy as I hoped, and my renewal process isn't going to be as simple as I thought.

Fortunately doing it manually was still simple. I just don't want to have to do things, and wait for things.

So the if you remember my post from January, I talked about how to get a wildcard cert setup for HAProxy to use.

Well, turns out since I did this using the --manual flag, I'm stuck having to do the renewal manually (at least for now), and I can't use the renew verb. I have to use the certonly verb again. Not only is it that verb it's the exact same command:

certbot certonly --manual --email nick@nicklang.com --server https://acme-v02.api.letsencrypt.org/directory --agree-tos -d *.nicklang.com -d nicklang.com

This walks me through the DNS and HTTP challenge all over again. So I need to deploy a TXT record and deploy a txt page to verify ownership. The problem with this process is it requires me to go and make changes to my domain reg (which is super easy) and then I need to deploy a text mage to my site which again is super easy. BUT I just don't want to do it.

I'm hoping that between the next 3 months I can review this process and hopefully get away from a manual way to an automated way.

But for now, lets kick this can down the trail.

Send Webmention