GitLab and SSL

ffuentesb · October 18, 2024, 9:29pm

Good evening, I am running a self hosted gitlab “gitlab-ee 17.4” I am trying to see if there is a way I can have the Lets Encrypt Cert renew automatically using CloudFlare DNS as its verification method.

Ideas? Thanks!

iwalker · October 19, 2024, 10:41am

Yes you can but you have to do the letsencrypt stuff outside of the gitlab configuration. Then in your /etc/letsencrypt/renewal/gitlab.example.com.conf file you need to put a renew hook in the renewparams section like:

renew_hook = systemctl restart gitlab-runsvdir

as for the gitlab configuration, you point the nginx ssl_certificate and ssl_certificate_key entries to the letsencrypt certificate, and ensure letsencrypt['enable'] = false is set in the gitlab config.

ffuentesb · October 20, 2024, 5:21pm

Thanks for your reply.

Topic		Replies	Views
Lets Encrypt certificate doesn't auto-renew Infrastructure as Code & Cloud Native	2	16580	November 8, 2024
Gitlab.com Pages and automated Letsencrypt SSL renewal GitLab CI/CD	4	2301	April 15, 2024
Gitlab CE fails Automatic Let’s Encrypt Renewal How to Use GitLab	1	120	January 14, 2025
Autorenewal Letsencrypt failed - couldn't get it work again How to Use GitLab	3	2723	May 29, 2019
Let's Encrypt certificate is not auto-renewed on self-managed gitlab-ce running in docker Self-managed letsencrypt	8	938	December 9, 2025

GitLab and SSL

Related topics