Simplified LE renew script

roles/common/files/etc_cron-monthly_letsencrypt-renew

@@ -1,22 +1,10 @@
 #!/bin/bash
 set -o errexit
 # Renew all live certificates with LetsEncrypt.  This needs to run at least
-# once every three months.
+# once every three months, but recommanded frequency is once a day.
 
-# Given a certificate file returns "domain1,domain2"
-# https://community.letsencrypt.org/t/help-me-understand-renewal-config/7115
-function getDomains() {
-        openssl x509 -text -in "$1" |
-        grep -A1 "Subject Alternative Name:" | tail -n1 |
-        tr -d ' ' | tr -d 'DNS:'
-}
-
-service apache2 stop
-for c in $(find /etc/letsencrypt/live/ -mindepth 1  -type d); do
-  domains=$(getDomains "$c"/cert.pem)
-  /root/letsencrypt/letsencrypt-auto --renew certonly -c /etc/letsencrypt/cli.conf --domains=$domains
-done
-service apache2 start
+/root/letsencrypt/letsencrypt-auto renew --pre-hook="service apache2 stop" --post-hook="service apache2 start" \
+    -c /etc/letsencrypt/cli.conf
 
 # Services that rely on LE certificates may need restarted and/or other actions.
 for script in $(find /etc/letsencrypt/postrenew/ -maxdepth 1 -type f -executable); do