They fixed it a bit ago.
With LetsEncrypt phasing out expiry reminder emails, I’m expecting to see this shit more and more often soon
Why would they phase that out?
Because it’s not very useful, very replacable, requires them to keep email addresses, and it’s costing them extra resources for the free service they provide.
Because no one should rely on that, they recommend to fully automate renewal with a script or some other programs.
What if there script is broken or not running properly? I would still want to be informed before I get a complaint from an user.
Then set-up a fucking Monitoring service. Not their problem
Manjaro: “First time?”
Must be a lot of vibe in the code over there these days.
30% appearently.
That’s true I read that hahah
They got that vibe
Yoink
How do you all manage this ?
They manually create certs at my job then manually move them other to a network drive and then a gpo? policy installs those certs to AD users.
I found a way to automate this process (but company didn’t care)
But I’m not an IT person, what’s the best approach for doing this on promises?
edit: I like the responses but I was hoping for something that wouldn’t use 3rd party products. What if hypothetically the certificates were self signed and you wouldn’t need a 3rd party CA?
Another thing is: is using 3rd party CAs really the most common way ?
For my personal setup at home: Traefik with LE
I think at work my technical lead buys multi-year certs and manually imports them.
Some clients of us use LE in some combination with another software.
Luckily Let’s Encrypt made automation more popular. Every new domain of mine gets a cert that is renewed automatically. I don’t have to worry at all about it.
How do you manage automatic renewal?
A cronjob calling Let’s Encrypt’s tool. I think it’s called certbot.
