Question

How to renew Let's Encrypt certificate on Ubuntu 20.04

Posted June 13, 2021 2.2k views
Let's EncryptUbuntu 20.04

I just got a notice from Let’s Encrypt Expiry Bot:

Your certificate (or certificates) for the names listed below will expire in 20 days (on 02 Jul 21 11:11 +0000). Please make sure to renew your certificate before then, or visitors to your web site will encounter errors.

I used the following command which I found from DO Questions.

sudo certbot certonly --manual --manual-public-ip-logging-ok --preferred-challenges dns-01 --server https://acme-v02.api.letsencrypt.org/directory -d "*.mydomain.net" -d mydomain.net

But I got the following error:

Press Enter to Continue
Waiting for verification...
Challenge failed for domain mydomain.net
Challenge failed for domain mydomain.net
dns-01 challenge for mydomain.net
dns-01 challenge for mydomain.net
Cleaning up challenges
Some challenges have failed.

IMPORTANT NOTES:
 - The following errors were reported by the server:

   Domain: mydomain.net
   Type:   dns
   Detail: DNS problem: NXDOMAIN looking up TXT for
   _acme-challenge.mydomain.net - check that a DNS record exists for
   this domain

   Domain: mydomain.net
   Type:   dns
   Detail: DNS problem: NXDOMAIN looking up TXT for
   _acme-challenge.mydomain.net - check that a DNS record exists for
   this domain

How can I update Let’s Encrypt?

These answers are provided by our Community. If you find them useful, show some love by clicking the heart. If you run into issues leave a comment, or add your own answer to help others.

×
Submit an Answer
1 answer

I think I found the solution from this article.

I run the followings to check the status:

sudo systemctl status certbot.timer

To test the renewal process:

sudo certbot renew --dry-run
by Erika Heidi
Let's Encrypt is a Certificate Authority (CA) that facilitates obtaining and installing free TLS/SSL certificates, thereby enabling encrypted HTTPS on web servers. Currently, the entire process of obtaining and installing a certificate is fully automated on both Apache and Nginx with the use of Certbot. In this guide, we'll use Certbot to obtain a free SSL certificate for Apache on Ubuntu 20.04, and make sure this certificate is set up to renew automatically.