Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Letsencrypt certificate for www and non-www domain

Tags:

https

ssl

lets-encrypt

I have generated SSL certificate like so:

sudo git clone https://github.com/letsencrypt/letsencrypt /opt/letsencrypt ./letsencrypt-auto certonly --standalone

Then I was asked for email ... and a domain name. I entered 'mydomain.com'

I figured out that I could enter multiple domains to be included in one certificate using different approach. E.g.:

sudo -H ./letsencrypt-auto certonly --standalone -d example.com -d www.example.com

I wonder if I could have entered multiple domains when I was promoted for them in a dialog or now I need to regenerate using a different approach?

Do I need to remove previous letsencrypt installation before going new way?

UPDATE -> SOLVED

sudo ./certbot-auto certonly --standalone -d mydomain.com -d www.mydomain.com
like image 447
user2814599 Avatar asked Dec 12 '16 09:12

user2814599

People also ask

Do I need a different SSL certificate for www and without?

You don't need a separate SSL for www and non www, although the specifics depend on which certificate type you have: Single domain: secures www and non-www by default.

Can I use Letsencrypt without domain?

No, it continues to not be possible from Let's Encrypt.

How do I get free HTTPS on my site using Let's encrypt SSL?

Now that the certificate has been installed, you may use it to secure your site: Go to Websites & Domains and click Hosting Settings. Select the SSL/TLS support checkbox. Select the Let's Encrypt certificate you have just received from the Certificate menu, and click OK.

1 Answers

You do not need to remove the installed certificate.

You can extend it to your sub-domain if you're using the same domain. Do the following:

sudo certbot certonly --standalone -d domain.com -d www.domain.com

When prompted for Expanding or Cancelling, reply with E then hit Enter key on your keyboard.

The certificate should be setup successfully.

If you encounter this error: Problem binding to port 80: Could not bind to IPv4 or IPv6, stop apache by running systemctl stop apache2 then run the above certbot command again.

Once the ssl certificate is successfuly setup, run systemctl restart apache2 to get apache up and running again.

like image 55
mutiemule Avatar answered Sep 28 '22 05:09

mutiemule
Sign in to Comment

Related questions

SSLStream example - how do I get certificates that work?
Web Client Exception: The underlying connection was closed: Could not establish trust relationship for the SSL/TLS secure channel
Nginx - Only enable SSL if SSL Certificates Exist
Enabling specific SSL protocols with Android WebViewClient
Heroku SSL added but visiting domain still says connection is not private
Android ssl: javax.net.ssl.SSLPeerUnverifiedException: No peer certificate (yet again)
What exactly is the git:// protocol?
How do I run my application as superuser from Eclipse?
pycurl and SSL cert
can you put SSL on a IP address or only on a web server's domain name?
What browsers only support SSLv2?
Within a web browser, is it possible for JavaScript to obtain information about the HTTPS Certificate being used for the current page?
Why am I getting an exception javax.net.ssl.SSLPeerUnverifiedException: peer not authenticated?
iOS9 does not load insecure resources from a secure page (SSL/HTTPS)
Heroku + Cloudflare completely free SSL
How safe are client SSL certificates in a mobile app?
Detect browser TLS compatibility
How to create HTTPS tornado server
HTTPS not working (on AWS Elastic Beanstalk based site)
Error:SSL peer shut down incorrectly In Android studio 3.0.1 [closed]

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!