The link has been posted below by @jmorahan. Thanks for clarifying. LetsEncrypt has made a once impossible task really easy and I’m so so grateful. That’s exactly what I wanted to be able to do, and LE just “know” so I am happy that is the case and renewing isn’t going to be a nightmare.
@jmorahan, yeah I think I have misunderstood the limit completely by the sound of your reply. So, I don’t need to split my sites over 7 certificates? Our set up is a bit unusual, we host a subdomain (sometimes 1, sometimes more which is pretty much a landing page), on a domain that isn’t owned by us. As a result, the subdomain DNS records are split between an older HAProxy, and more recently added clients use the ELB, both point to the same 4 servers, though.
So, if I understand you correctly, I can issue a certificate for each of my domains? Is that correct?
This is the from the docs that made me split up my certs:
If you have a lot of subdomains, you may want to combine them into a single certificate, up to a limit of 100 Names per Certificate. Combined with the above limit, that means you can issue certificates containing up to 2,000 unique subdomains per week. A certificate with multiple names is often called a SAN certificate, or sometimes a UCC certificate.
It’s rare we add sites - although not impossible, a new site every few months I imagine sounds feasible.
@mnordhoff - thanks for that! Someone replied to my other thread about it and it in theory is perfect - however, asking our clients to update their DNS would be a disaster I’d like to avoid. However, if we ever need to, we’ll go down the ALB route 100%.