I have 4.3.x install (Active Directory) that was deployed in March '18. Certs successfully updated through Sept but failed to update in December. The certs expired on the 25th of Dec.
The logs show no attempts were made after September.
The system has been updated via policy from 4.2.x to 4.3.3 along the way. As a side note, I’ll be stopping that practice as it has created other serviceability problems.
Using the GUI configuration tool for Letsencrypt, the certs were refreshed and all working as expected now.
What steps do I need to take to trace where this failed and what should happen to ensure any missed updates get thrown back into the queue before an expiry event occurs?