If you are using Cerbot and also have received an E-Mail from Let’s Encrypt, informing you that the ACME-TLS-SNI-01 Domain Validation reaches End of Life on February 13. 2019, I have an easy way for you to Update Cerbot to use the latest Validation Method.
Table of Contents
I show you how to Update Certbot to the latest version and automatically implement the newest Validation Method. I use Ubuntu Server 16.04 in this example, but this should work on 18.04 as well.
Update Certbot to the latest Version
Make sure to update your repository first:
After this, we are going to install the newest version of Certbot:
Next, we have to run Certbot and re-initialize our Configuration:
A quick run-down of the questions and answers:
- Which names would you like to activate HTTPS for?
- Choose your Domain
- What would you like to do?
- 1 Attempt to reinstall this existing certificate
- 2 Renew & replace the cert (limit ~5 per 7 days) <—Choose 2
- Please choose whether or not to redirect HTTP traffic to HTTPS, removing HTTP access.
- 1 No Redirect
- 2 Redirect <– Up to you, but I chose Redirect
In the end, you should see a confirmation that the installation was successful.
Verifying if Certbot works
To verify if Certbot works, you can do a dry-run:
certbot renew --dry-run
Which ideally tells you that the dry run was successful.
That’s it. Probably was much easier than you thought it would be, right? If you want to automate Certbot, check out my Tutorial on it.