How to regenerate images when you do a style change, and images don't reflect them
Introduction There might be a situation when you are doing some changes in the…
How to renew SSL certificate from Lets-encrypt when your website is using cloudflare
January 07, 2018
Introduction
This article is for website administrator or owner who has once taken certificate from letsencrypt.org, and its the time to renew your certificate. And, you are using cloudflare CDN for your website.
Lets-Encrypt Organization
Letsencrypt.org is an organization who provides free SSL certificate to anyone. I'm a great admirer of this service. And, its popularity increased when google chrome announced that it will give an advantage to SSL enabled websites.
I will write about how to get a new SSL certificate for your website from lets-encrypt. Its an amazing service, with an easy to use utility scripts.
Problem
Letsencrypt says you should run following command:
certbot renew
It may work for most of the people. But, it will not work for people who are using cloudflare.
Following error comes out:
Solution
There are two solutions that I could find till now:
1. Bypass cloudflare DNS proxy
You have to disable DNS proxy from cloudflare CDN. i.e. Bypassing cloudflare. If someone opens your website, he/she can see your actual IP, OR he/she will be served from your hosting, not from cloudflare.
You have to do this, just for the time period in which you are running command to renew your certificate.
Warning: When you disable this setting, your users might see SSL warning on browser, and that will not be good for you.
And, run command:
certbot renew
You are done! Do not forgot switch ON DNS proxy setting from cloudflare
2. Via Command line
For this, you need ssh access of your web server.
Open terminal, and type command:
certbot certonly -d example.com -d www.example.com
(put your website in place of example.com)
It will ask for putting webroot path. Write down the path of your documentRoot.
You're done.
Share your experiences or issues if any, I will be able to help them out.
Update
You should test first your commands, before requesting Lets Encrypt. Read: Test your request to Lets Encrypt
Also read: Common error
Similar Posts
How to Fetch JSON of all Videos of a Youtube Channel
Youtube APIs are great way to fetch details about video or channels. I’ve…
How to generate powerful tags for your content - SEO
One of the biggest task while writing article or blog is to have right set of…
How to Use Google Fonts in Website design with Bootstrap
If you are using Bootstrap, the default font that comes with the package is…
Resolving Checkmarx issues reported
So, here we are using input variable String[] args without any validation…
Lets-Encrypt SSL Certificate Useful Commands
You might need to put sudo before above command. The command will show details…
Latest Posts
System Design Interview Vocabulary Notes
In this post, we will see some of the frequently used concepts/vocabulary in…
Coding Interview - Facebook System Design Interview Types
System design interview is pretty common these days, specially if you are having…
Find the maximum sum of any continuous subarray of size K
Introduction You are given an array of integers with size N, and a number K…
Graph Topological Sorting - Build System Order Example
Graph Topological Sorting This is a well known problem in graph world…
Binary Tree - Level Order Traversal
Problem Statement Given a Binary tree, print out nodes in level order traversal…
Four Sum - Leet Code Solution
Problem Statement Given an array nums of n integers and an integer target, are…