Ghost uses ZeroSSL certificate. Does it automatically renew every 90 days?

prokopton · September 27, 2021, 11:48pm

Hello,

I notice that Ghost uses ZeroSSL. Do the certificates automatically renew every 90 days, like the ones directly issued by Let’s Encrypt?

Thank you.

prokopton · September 28, 2021, 1:57am

I’m getting conflicting answers from the forum members.

Ghost CLI is set up to renew it with a cron job:
Ubuntu 20 LTS and Nginx

$ sudo crontab -u root -l

If you see something like this:
7 0 * * * “/etc/letsencrypt”/acme.sh --cron --home “/etc/letsencrypt” > /dev/null

It means, it’s configured for auto renew.

vikaspotluri123 · September 28, 2021, 2:35am

From a functional perspective, ZeroSSL and LetsEncrypt operate the same way - they provide you with a certificate which is valid for ~90 days

Internally, the Ghost CLI calls acme.sh which in turn configures auto-renewal of certificates to run monthly. So you shouldn’t need to manually update your certificate

Topic		Replies	Views
How to renew default let's encrypt ssl? Developer help	19	13663	May 23, 2018
Let’s Encrypt no longer used by ghost-cli Installation	2	921	December 12, 2021
How to renew lets encrypt ssl after 3 months in digital ocean Developer help	31	6912	October 25, 2021
Is there a systemd service that checks for a certificate validity and updates it? Developer help	7	671	May 24, 2019
SSL cert not renewing Developer help	5	3492	November 11, 2019

Ghost uses ZeroSSL certificate. Does it automatically renew every 90 days?

Related Topics