Automate certificate renewal via Let’s Encrypt on Avi/NSX ALB

SSL/TLS Certificates List in Controller
SSL/TLS Certificates List in Controller

Patrik Kernstock

May I introduce my self? I am Patrik Kernstock, 25 years old, perfectionist, born in Austria and living in Ireland, Cork. Me explained in short: Tech- and security enthusiast, series & movies junky. Interesting in Linux, Container-stuff and many software solutions by Microsoft, Veeam and VMware.

5 1 vote
Article Rating
Notify of

This site uses Akismet to reduce spam. Learn how your comment data is processed.

oldest most voted
Inline Feedbacks
View all comments
Manish Jha

Great Article Patrik. I am gonna try this out in my lab soon.

Wondering what config changes you made with ALB to get a dark theme?


hi buddy, great script. I am with a problem and I cannot find the solution. I have no programming skills and I am just learning about avi. I share the error I have to see if you can help me: Error from certificate management service: Could not find a VS with fqdn = STDOUT - 'Running version 0.9.0 Debug enabled. dry_run is: False disable_check is: False directory_url is Reusing account key. Parsing account key ... Parsing CSR ... Found domains: Getting directory ... Directory found! Registering account ... Already registered! Creating new order ... Order created! Authorization… Read more »


I have not looked in the logs to get the verbose error rapt0r has posted, however, I am getting the message “Error from certificate management service: Could not find a VS with fqdn = domainnamehere” so I think I have the similar issue. We have a glsb and two SE’s creating two vs objects for the site. dns of domainnamehere does resolve to the ip of the vs. I have also tried the disable_check True with same results.

Would love your thoughts, please comment.x