Can I generate all my certs in one machine, inclusive those subdomain isn't in the server?


#1

I don’t want to move from one to one server, to generate all the certificates, I have many server and many subdomain in differents machine.

How i can do that?


#2

Yes you can do it if you:
a) Have all record to this machine
b) Use Manual WebRoot method and distribute the challenge via NFS/FTP/SCP or else.


#3

Can you show me the command, please? Because I try but without successful.

I don’t have the records on this machine, only one of those record it’s on it


#4

@nanoteck check https://letsencrypt.readthedocs.org/en/latest/using.html#manual


#5

I have read this but don’t work to me when I run

./letsencrypt-auto certonly --manual -d test.xxxxxx.com.py --server https://acme-v01.api.letsencrypt.org/directory

They try to verify the IP an show like this:

Failed authorization procedure. test.xxxxxx.com.py (http-01): urn:acme:error:unauthorized :: The client lacks sufficient authorization :: Invalid response from test.xxxxxx.com.py/.well-known/acme-challenge/r6HpsmHC37GEWcyqTThODmrlimMKmj9x1NdLrFFoNUw [xxx.x.xxx.xx]: 404

IMPORTANT NOTES:

  • The following ‘urn:acme:error:unauthorized’ errors were reported by
    the server:

    Domains: test.xxxxxx.com.py
    Error: The client lacks sufficient authorization