Let's Encrypt enhancements

The tasks for this procedure should run almost unconditionally and should use the correct CAs for the trust chain. Instruction should discuss the CA lifecycle practices and warn users about the challenges of issuing a new certificate when the current certificate is invalid.