Forums

Letsencrypt Automatic Renewal

Hi all,

After a while manually renewing my letsencrypt certs, I’ve been speculating on possible solutions.

My question is, has anyone written an executable to auto renew certs, that I could schedule daily to check all and renew if expired?

With the other issue being having to manually email the team, is there a way that IF a cert has been renewed that we could commit that info to a db that a script on my own machine could check daily? This would be good as I could write a simple script using smtp to email the team with the information for the renewal.

I don’t know if this is all too clear and I realise I’m running the risk of sounding stupid or out of the loop, but any help on the topic would be massively appreciated.

Thanks

I believe we have some customers who do have automatic cert renewal scripts.

Of note:

  1. you don't need to wait till it expires before u renew. I think it's something like 1 month before expiry == you can start the renewal process. ie. there can be no downtime
  2. you can just have a daily script that checks the cert to see if it's close to expiry (eg: <2 wks till expiry date), and then if so do all the renewal stuff and automatically send PythonAnywhere admins an email

But at the end of the day if your script fails to send out that email / detect expiry correctly etc then your cert won't get renewed- perhaps you could also automatically add a google calendar to remind yourself to check manually.