Update Certbot to use the latest Validation Method (ACME EOL!)

If you are using Cerbot and also have received an E-Mail from Let’s Encrypt, informing you that the ACME-TLS-SNI-01 Domain Validation reaches End of Life on February 13. 2019, I have an easy way for you to Update Cerbot to use the latest Validation Method.

Table of Contents

I show you how to Update Certbot to the latest version and automatically implement the newest Validation Method. I use Ubuntu Server 16.04 in this example, but this should work on 18.04 as well.

Update Certbot to the latest Version

Make sure to update your repository first:

sudo apt-get updateCode language: JavaScript (javascript)

After this, we are going to install the newest version of Certbot:

sudo apt-get install certbot python3-certbot-apache -YCode language: JavaScript (javascript)
Update Certbot

Next, we have to run Certbot and re-initialize our Configuration:

certbot
Update Certbot

A quick run-down of the questions and answers:

  • Which names would you like to activate HTTPS for?
    • Choose your Domain
  • What would you like to do?
    • 1 Attempt to reinstall this existing certificate
    • 2 Renew & replace the cert (limit ~5 per 7 days) <—Choose 2
  • Please choose whether or not to redirect HTTP traffic to HTTPS, removing HTTP access.
    • 1 No Redirect
    • 2 Redirect <– Up to you, but I chose Redirect

In the end, you should see a confirmation that the installation was successful.

Verifying if Certbot works

To verify if Certbot works, you can do a dry-run:

certbot renew --dry-run
Update Certbot

Which ideally tells you that the dry run was successful.

Conclusion

That’s it. Probably was much easier than you thought it would be, right? If you want to automate Certbot, check out my Tutorial on it.

Leave a Comment

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Share via
Copy link
Powered by Social Snap