0

Running Apache on EC2 ubuntu server, using letsencrypt certificate, which I see if I run sudo certbot certificates. I manually renewed it and confirmed the dates on the server, but the certificate on the website is still showing the old date.

Then I restarted the server with sudo systemctl restart apache2.service, but still don't see any changes on my site's certificate date. Please help, expiring in a couple of days..

Stewie Griffin
  • 131
  • 2
  • How did you manually renew it? – Ackack Mar 24 '21 at 05:05
  • *What* dates you confirmed? How SSL in the Apache is configured (what are `SSLCertificateFile`, `SSLCertificateKeyFile`)? Let's Encrypt certificates lie in `/etc/letsencrypt/archive//{cert,privkey,chain,fullchain}N.pem`, and there are symlinks to latest cert in the `/etc/letsencrypt/live//`. So your Apache must be configured to use these symlinks in ../live/ directly, or those latest files must be copied somewhere after each renew where Apache finds them. – Nikita Kipriyanov Mar 24 '21 at 05:52
  • Unfortunately, I cannot find where SSLCertificateKeyFile path is located. When I run cerbot certificates, it shows 2 .pem files under /live/ directory with renewed dates. But I guess my Apache is not finding those files – Stewie Griffin Mar 24 '21 at 15:28

0 Answers0