PT CEMERLANG DIGITAL TECHINDO
Auto renewal certbot let encrypt
Auto renewal certbot let encrypt
admin
May 25, 2026
1:07 pm

Auto Renewal with Certbot (Let’s Encrypt)

Certbot is a free and open-source tool used to automatically manage SSL/TLS certificates from Let's Encrypt.
One of its most useful features is automatic certificate renewal, which helps keep websites secure without manual intervention.

How Auto Renewal Works

  1. Certificate Issued
    Let’s Encrypt provides an SSL certificate that is valid for 90 days.
  2. Certificate Installed
    Certbot installs the certificate on your web server such as:
    • Nginx
    • Apache HTTP Server
  3. Automatic Renewal Process
    Certbot creates a scheduled task (cron job or systemd timer) that checks certificate expiration automatically, usually twice a day.
  4. Renewal Trigger
    If the certificate will expire within 30 days, Certbot automatically renews it.
  5. Web Server Reload
    After renewal, the web server reloads the new certificate without downtime.

Benefits of Auto Renewal

  • Prevents SSL certificate expiration
  • Keeps HTTPS connections secure
  • Reduces manual server maintenance
  • Avoids website security warnings
  • Works automatically in the background

Common Certbot Commands

# Check installed certificates
certbot certificates

# Test auto renewal
certbot renew --dry-run

# Manually renew certificates
certbot renew

# Reload Nginx after renewal
systemctl reload nginx

Example Cron Job

0 */12 * * * root certbot renew --quiet

This command checks every 12 hours and renews certificates only when necessary.

Category : Business Solutions