Date: Sun, 7 Mar 2021 14:48:12 -0500 From: Chris Gordon <chris@theory14.net> To: David Mehler <dave.mehler@gmail.com> Cc: Shamim Shahriar <shamim.shahriar@gmail.com>, freebsd@boosten.org, freebsd-questions <freebsd-questions@freebsd.org> Subject: Re: acme.sh issue, cert date invalid, but no errors from letsencrypt Message-ID: <2040F5AF-8A54-41A9-A387-F5A35FBD61E1@theory14.net> In-Reply-To: <CAPORhP6ymOn18r6HGDxGaE8p=cZi19=KQ=FaYcbPXdyKvG3Wnw@mail.gmail.com> References: <CAPORhP6xi2Kf7iQ8BxQNeezycGHOw%2BnSqn6x9hX8mz-wzjakLQ@mail.gmail.com> <B6837972-3357-4469-88EE-F832D7967924@boosten.org> <CAOyJeZSqOsPh2naOB7or7be1MNvzB=aR1WiUhzjf7pkMHv4KfA@mail.gmail.com> <CAPORhP6ymOn18r6HGDxGaE8p=cZi19=KQ=FaYcbPXdyKvG3Wnw@mail.gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
> On Mar 7, 2021, at 11:48 AM, David Mehler <dave.mehler@gmail.com> = wrote: >=20 > Hello, >=20 > Thanks for your reply. I did repeatedly restart the web server. >=20 > I've also looked at the file creation date they're the new certs > issued yesterday, but checking them with openssl shows as I said the > not after november 2020 date. >=20 > Suggestions welcome. > Thanks. > Dave. I just moved from certbot to acme.sh, but a couple of thoughts: - Did you run --install-cert after the first issue? I didn't find it as = obviously documented as maybe I had hoped, but this (AFIAK) sets up = everything so that the --cron option will put the renewed certs in the = right place and reload/restart things to catch the new certs = (--reloadcmd). =20 - I just ran acme.sh --cron --force and I did get an updated cert with = an updated "Not Before" date. - What is in /var/log/acme.sh.log? Have you increased the debug level? Chris=
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?2040F5AF-8A54-41A9-A387-F5A35FBD61E1>