How to automate the complete cert renewal including nginx restart?

  • Hi gys,
    I have searched the internet quite a time and the only practical solution I found was to restart the webserver. But I am sceptical, renewing the certificate is a simple maintenance task. Normal business. Is restarting really the only possible solution to update the certificate shown in the browser (nginx in my case)?

    If no, what would I have to do? Cache refresh at client side does not work....If yes, how could the restart be automated such that after successful renewal with the letsencrypt plugin my nginx is restarted as well?

    Thank you for sharing!

    cpu Intel(R) Core(TM) i5-10400 CPU @ 2.90GHz
    omv 6.9.13-1 (Shaitan)

    kernel 6.1.0-0.deb11.11-amd64

    • Offizieller Beitrag

    Pretty sure you only have to reload (not restart) nginx for a new cert. I didn't add that to the letsencrypt plugin because not everyone is using the cert for OMV's nginx install. I guess I could look at adding it as an option.

    omv 7.4.6-1 sandworm | 64 bit | 6.8 proxmox kernel

    plugins :: omvextrasorg 7.0 | kvm 7.0.14 | compose 7.2.3 | k8s 7.2.0-1 | cputemp 7.0.2 | mergerfs 7.0.5 | scripts 7.0.8 plugins source code and issue tracker - github - changelogs

    Please try ctrl-shift-R and read this before posting a question.

    Please put your OMV system details in your signature.
    Please don't PM for support... Too many PMs!

    • Offizieller Beitrag

    Has there been any progress on this?

    No because I decided not to port the nginx plugin to OMV 5.x in favor of using docker.

    is it possible to reload (or restart) nginx from the webgui?

    Not really. You could manually run a scheduled job with the command of systemctl restart nginx

    omv 7.4.6-1 sandworm | 64 bit | 6.8 proxmox kernel

    plugins :: omvextrasorg 7.0 | kvm 7.0.14 | compose 7.2.3 | k8s 7.2.0-1 | cputemp 7.0.2 | mergerfs 7.0.5 | scripts 7.0.8 plugins source code and issue tracker - github - changelogs

    Please try ctrl-shift-R and read this before posting a question.

    Please put your OMV system details in your signature.
    Please don't PM for support... Too many PMs!

Jetzt mitmachen!

Sie haben noch kein Benutzerkonto auf unserer Seite? Registrieren Sie sich kostenlos und nehmen Sie an unserer Community teil!