Ghost uses ZeroSSL certificate. Does it automatically renew every 90 days?

prokopton · September 27, 2021, 11:48pm

Hello,

I notice that Ghost uses ZeroSSL. Do the certificates automatically renew every 90 days, like the ones directly issued by Let’s Encrypt?

Thank you.

prokopton · September 28, 2021, 1:57am

I’m getting conflicting answers from the forum members.

Ghost CLI is set up to renew it with a cron job:
Ubuntu 20 LTS and Nginx

$ sudo crontab -u root -l

If you see something like this:
7 0 * * * “/etc/letsencrypt”/acme.sh --cron --home “/etc/letsencrypt” > /dev/null

It means, it’s configured for auto renew.

vikaspotluri123 · September 28, 2021, 2:35am

From a functional perspective, ZeroSSL and LetsEncrypt operate the same way - they provide you with a certificate which is valid for ~90 days

Internally, the Ghost CLI calls acme.sh which in turn configures auto-renewal of certificates to run monthly. So you shouldn’t need to manually update your certificate

Topic		Replies	Views
ZeroSSL set to auto renew but I was notified certificate is expiring soon Installation	1	785	December 12, 2021
How to renew default let's encrypt ssl? Developer help	19	14191	May 23, 2018
Let’s Encrypt no longer used by ghost-cli Installation	2	964	December 12, 2021
How to renew lets encrypt ssl after 3 months in digital ocean Developer help	31	7689	October 25, 2021
Is there a systemd service that checks for a certificate validity and updates it? Developer help	7	722	May 24, 2019

Ghost uses ZeroSSL certificate. Does it automatically renew every 90 days?

Related topics