Plesk for Linux
kb: how-to
ext: le
ABT: Group B
Applicable to:
- Plesk for Linux
Question
Will an already existing domain have a free Let's Encrypt certificate installed when extensions are configured as follows on the service plan level?
Keep websites secured with free SSL Certificate is enabled in Plesk > Service Plans > example_plan > Additional Services:
Answer
Option secures both newly created domains and existing ones by execution of the scheduled task configured in Plesk > Tools & Settings > Scheduled Tasks:
PLESK_INFO: /opt/psa/admin/bin/php -dauto_prepend_file=sdk.php '/opt/psa/admin/plib/modules/sslit/scripts/keep-secured.php'
It runs every hour and checks if a domain has an SSL certificate. Hence, if certificate installation fails, it will try to install it in one hour.
Comments
4 comments
What does happen if certificates cannot be issued? e.g. for existing sites which dns point to other external space
The renew of certificates shuts down all running phusion passenger apps through the (not graceful) apache httpd restart. Thereby all domains with Nodejs apps (phusion passenger) return a 502-statuscode for a short period of time. Does the keep-secured cronjob really needs to be run every hour? What's the background of this decision?
Is it legit to change the interval of this cronjob to a custom value? Will it be reset on every plugin update?
Pier Paolo Ronzino: check the /var/log/plesk/panel.log - it should contain errors thrown by the extension.
Like for example:
or
Hi, Sebastian Thomas
In case you would like, you can alter those:
The crontab schedule changes would not be overridden after update of the extension.
Please sign in to leave a comment.