Letsencrypt - do I need to keep ".well-known" accessible for certificate renewal?

apache-2.2 apache-2.4 lets-encrypt

I created a certificate for my Apache 2.4 server. To validate my server letsencrypt created the folder .well-known and accessed it.

Do I need to keep this folder accessible (for certificate renewal) or could I delete/block the folder?


Yes, it's needed each time a certificate is renewed. You still need to verify that the calling system is in control of the resource.


Lets Encrypt can create a new directory when you renew your ssl. So, yes you need the directory for renewal, but you can remove it after the first validation or a renewal.

Related

Use LetsEncrypt certs with Neo4j
How can I enable remote access to the Admin page in CUPS
How can I find failed systemd services?
Automatically choose SSL Certificate based on accessed hostname in the same vhost
What does the less than symbol in front of LVM volume size mean?
Ansible syntax for regex_search using variable to match
Expose a Unix socket to the host system from inside from a Docker container
Alpine shell can't find file in docker
How do you access a service that is in another stack?
.net core build error when building docker image missing Newtonsoft.Json
Python json accessing an id in a nested dictionary and list based on it's value
print() go wrong when multiple a string by any number, why does that happen?