..
#devops

How to Renew the Certificate CDN for my Sites on AWS

In my mac, following the steps with sudo user:

# install certbot if needed
brew install certbot 
certbot --server https://acme-v02.api.letsencrypt.org/directory -d "*.tiagoaguiar.co" --key-type rsa --manual --preferred-challenges dns-01 certonly

Add the txt file generated (acme) into txt records on godaddy DNS

NOTE: The parameter --key-type rsa was necessary to keep the current certificate type because nowadays, the cerbot generate a different certificate type.

Now, open the Amazon Certificate Manager and Reimport the certificate

/etc/letsencrypt/live/tiagoaguiar.co/
cert.pem
privatekey.pem
chain.pem

To copy for clipboard.

pbcopy < cert.pem
pbcopy < privkey.pem
pbcopy < chain.pem

If the step for re-imoprt failure, then reimport once again.

In the last case, invalidate the cloudfront's cache.