Adding another domain to an autorenew

michael@wpmm22:~$ sudo certbot --apache -v
Saving debug log to /var/log/letsencrypt/letsencrypt.log
Plugins selected: Authenticator apache, Installer apache

In Godaddy, I can create a CSR with all my DNS names. I have been reading the certbot docs. I need to add my Fortinet 60E firewall to the LE cert with the 5 names. Where does it get these 5 names from? Can I modify the list?

Which names would you like to activate HTTPS for?


Select the appropriate numbers separated by commas and/or spaces, or leave input
blank to select all options shown (Enter 'c' to cancel):

How can I add to the list?

Ubuntu 22.04.3 LTS
Kernel 6.2.0-39-generic
Server version: Apache/2.4.58 (Ubuntu)
PHP 8.2.13

I added to the conf file

<VirtualHost *:80>
    Redirect permanent /
</VirtualHost> now shows up on the list.

Path (a):

  • Step #1(a): Add an HTTP vhost to cover the name "".
  • Step #2(a): sudo certbot --apache -d
  • Step #2(a-alternate): sudo certbot --apache
    and then select the number for that new name


Path (b):

  • Step #1(b): Stop/Turn off Apache
  • Step #2(b): sudo certbot --standalone -d
  • Step #3(b): [as needed] Create the HTTP(S) vhost(s) and use the new cert
1 Like

There is no HTTPS vhost to redirect this to [yet].


This entry will be put on the Fortinet 60E firewall until Fortinet can get a solution. DNS Server on the firewall has the entry for With Godaddy, I just added it as a DNS entry in the cert.

I usually use this script to generate the CSR and Private Key

openssl req -new -sha256 -nodes -out \5Cert.csr -newkey rsa:2048 -keyout \5Cert.key -config <(
cat <<-EOF
default_bits = 2048
prompt = no
default_md = sha256
req_extensions = req_ext
distinguished_name = dn

[ dn ]
L=Clinton Township
CN =

[ req_ext ]
subjectAltName = @alt_names

[ alt_names ]
DNS.1 =
DNS.2 =
DNS.3 =
DNS.4 =
DNS.5 =

I manually added the certificate to the Fortinet 60E. is working. Fortinet is working on a solution.

1 Like

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.