Can the certbot nginx command be reissued after success

kswat · August 12, 2022, 10:02am

Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. crt.sh | example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.

My domain is:
pywise.co.uk
I ran this command:
sudo certbot --nginx -d pywise.co.uk -d www.pywise.co.uk
It produced this output:
Failed for valid reason
Reason:
I created CNAME incorrectly - used https://pywise.co.uk
Fix: using pywise.co.uk

But I tried the command (without second -d parameter www part)
sudo certbot --nginx -d pywise.co.uk

Certificate created successfully and updated nginx

Question:
I have issue with OAuth credentials (may be not a right forum for this)

redirect_uri: http://pywise.co.uk/login/oauth2/code/google

But I want rerun - sudo certbot --nginx -d pywise.co.uk -d www.pywise.co.uk
Can I do it ? or do I need to run different steps ? please advice

MikeMcQ · August 12, 2022, 1:40pm

Correct. This is not correct forum for oauth

Yes, you can do that and certbot will ask whether you want to expand the cert and say yes to that.

But you must setup nginx properly for both names. Right now they respond differently to Let's Encrypt http challenge requests. In fact, your apex domain pywise.co.uk responds with an error http 502 Bad Gateway. You won't be able to get a cert for that using the http challenge with a 502 error.

Usually the www domain is just another name in the same server block as the apex. It can be a different server block it just usually is not. Example:

server_name pywise.co.uk www.pywise.co.uk;

kswat · August 12, 2022, 1:59pm

Hi, Thanks for your reply.
I turned off my server (reducing costs). I will spin now

If I rerun sudo certbot --nginx

thank you

kswat · August 12, 2022, 2:11pm

Thanks
I have rerun the command and selected E option
Your existing certificate has been successfully renewed, and the new certificate
has been installed.

system · September 11, 2022, 2:11pm

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.