Add wildcard to base domain certificate

Help
1

Hello,

I have created a cert for my base domain about two years ago, without wildcard support, like this

sudo certbot --authenticator webroot --installer apache
sudo certbot renew --dry-run

Everything works, cert is updated. I would like to add wildcard/subdomains support in the same cert file (to cover both the base domain and the wildcard).

  1. Is this possible? How?
  2. Assuming I find an answer for #1, what do I have to do to keep having automatic renewal for the modified certificate?

thanks a lot

2

Hi @kcris

please read

If you want to create a wildcard certificate, dns-01 validation is required.

So your dns provider should support an API. And there should be a plugin you can use.

Perhaps check acme.sh.

3 Likes
3

Hi, thanks for your answer!

I think I am out of luck, since I have a ā€˜freenomā€™ domain which is not in that list of supported providers (for dns challenges).

Thanks for pointing that out!

Thanks
Chris

2 Likes
4

You can still use other providers for dns, the most common free recommendation is Cloudflare.

3 Likes
5

Hi,

interesting idea, so what youā€™re saying is that I could ask freenom (via a NS record) to use cloudflare servers for dns and then I could use acme.sh to do the dns challenge (cloudflare being supported) - and this way Iā€™d be able to get my wildcard

did I got it correctly?

thanks

2 Likes
6

Exactly right! This is how I do it.

3 Likes
7

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.