Question

How do I transfer a Let's Encrypt certificate from one droplet to another?

Posted May 10, 2017 5.4k views
Let's EncryptUbuntu 16.04

I’ve followed this guide to install a Let’s Encrypt certificate on the first droplet: https://www.digitalocean.com/community/tutorials/how-to-secure-nginx-with-let-s-encrypt-on-ubuntu-16-04

I’d like to destroy that droplet and instead move the certificate to a new droplet elsewhere. Do I run certbot again on the new droplet? Or do I just copy over the certificate files? If the latter, then how do I configure auto-renewal?

Thanks!

3 comments

These answers are provided by our Community. If you find them useful, show some love by clicking the heart. If you run into issues leave a comment, or add your own answer to help others.

×
1 answer

Hi @Saga
You can do what @mnordhoff recommends - it’s probably the easiest way.
Otherwise you would have to manually copy files from /etc/letsencrypt to the new server.
Just remember that you will get an email alerting you that the old certificate is expiring - you need to ignore those mails, since you are actually using a different certificate on a different server. I think you get two mails around day 80 of the old certificate.

  • If the new certificate is for the same set of names as the old certificate, Let’s Encrypt won’t send expiration warning emails.

Submit an Answer