Add a subdomain

jerem_d · May 11, 2021, 9:00am

Hi,

I did install certbot and it works perfectly. For now I have:

"https://mydomain.fr/portofolio"

If tomorrow I want :

https://mydomain.fr Or
https://portofolio/mydomain.fr Or
https://any_sub_domain/mydomain.fr

do I need to do something or the certificate is valid for any subdomain that is links with my domain ?? I don't want to make any mistake and break what is already works.

Also anyone know how I can add the "www" ? Because for now if I try to access to my website with "https://www.mydomain.fr/portofolio" I have a warning.

Thanks

Osiris · May 11, 2021, 1:56pm

If you didn't create a wildcard certificate, it's not valid for random subdomains, no.

You should add those subdomains to your certificate.

Re-issue your certificate, but also include the www subdomain.

jerem_d · May 11, 2021, 2:39pm

No I didn't. I've just followed the documentation (Certbot - Ubuntufocal Apache)

I believe to add a wildcard I'll have to follow that tutorial : Issue Let's Encrypt Wildcard Certificate using Certbot - Interserver Tips

Would you mind to confirm it please ?

Thank you

Osiris · May 11, 2021, 3:40pm

The official Certbot - Ubuntufocal Apache guide you linked yourself above has a "Wildcard" tab, next to the tab "default" which shows the non-wildcard instructions. I recommend looking at that first before using $random_guides from the internet: while probably well-meant, the quality of $random_guide_from_the_internet varies from pretty good to straight bad.

jerem_d · May 13, 2021, 9:22am

Yes thank you you're right I haven't seen the tab.

So I made the wildcard certificate + one for "domain.fr" because "*.domain.fr" doesn't cover "domain.fr" (I say it in case someone is in the same situation than me because as a beginner it is not obvious).

Now everything is working except for the subdmains with "www" like "https://www.subdomain.mydomain.fr".

Unfortunately there is no error message. Just a warning that saying the connexion may not be safe.

  Certificate Name: mydomain.fr
    Serial Number: 3b4c63ca1f8ab5eam91d7dc8835d50f98a6
    Key Type: RSA
    Domains: *.mydomain.fr mydomain.fr
    Expiry Date: 2021-08-10 20:32:47+00:00 (VALID: 89 days)
    Certificate Path: /etc/letsencrypt/live/mydomain.fr/fullchain.pem
    Private Key Path: /etc/letsencrypt/live/mydomain.fr/privkey.pem

I don't understand why "https://www.mydomain.fr" works without needed to add a certificate for it and "https://www.subdomain.mydomain.fr" doesn't.

Osiris · May 13, 2021, 9:52am

Because a wildcard is only valid for a single DNS label.

Please read some novice documentation such as the Let's Encrypt Glossary entry for wildcard certificates: Glossary - Let's Encrypt

Note that a double wildcard cert (e.g. *.*.example.com) is not valid.

system · June 13, 2021, 7:50am

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Wildcard Support without CertBot Issuance Tech	8	895	August 30, 2018
How can I add more subdomains to my SSL Certificate? Help	16	170325	June 9, 2017
Hard time adding (client) domains to my wildcard's domain cert Help	4	415	June 30, 2022
Upgrading to use wildcard domains existing subdomains Issuance Tech	4	15958	April 25, 2018
Add a subdomain Help	4	976	October 4, 2021

Add a subdomain

Related topics