Certbot and web site with two domains and subdomains

caverdude · June 7, 2022, 3:01am

Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. crt.sh | example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.

My domain is:www.rsvlelectrician.school

I ran this command:it was the sudo certbot for one web site

It produced this output: produced the 4 or 5 files I then moved to the conf folder in tomcat9

My web server is (include version):tomcat 9

The operating system my web server runs on is (include version): ubuntu linux 20.04.3

My hosting provider, if applicable, is: aws

I can login to a root shell on my machine (yes or no, or I don't know):I use sudo

I'm using a control panel to manage my site (no, or provide the name and version of the control panel):no

The version of my client is (e.g. output of certbot --version or certbot-auto --version if you're using Certbot): 0.40.0

So I have www.rsvlelectrician.school then rsvlelectrician.school then www.rsvlelectrician.com and then rsvlelectrician.com I need all for on ssl. I was able to setup the first with certbot. do I simply run certbot once for each? I tried once and failed on first without www. Anyway. I know I need to make an entry in server.xml for each.

rg305 · June 7, 2022, 3:05am

Hi @caverdude, and welcome to the LE community forum

Did you spell the name right?
*** 8.8.8.8 can't find rsvlelectrician.school: Non-existent domain
*** 8.8.8.8 can't find www.rsvlelectrician.school: Non-existent domain
*** 8.8.8.8 can't find rsvlelectrician.com: Non-existent domain
*** 8.8.8.8 can't find www.rsvlelectrician.com: Non-existent domain

rg305 · June 7, 2022, 3:19am

My advice: When using Tomcat9, don't use certbot directly

And I hope the weather is good on your side of the state.

Osiris · June 7, 2022, 6:13am

Doesn't seem those domains are registered (yet)? Or did you register them very recently by any chance?

osiris@erazer ~ $ whois rsvlelectrician.school
Domain not found.
>>> Last update of WHOIS database: 2022-06-07T06:12:45Z <<<
(...)
gerjan@erazer ~ $ whois rsvlelectrician.com
No match for domain "RSVLELECTRICIAN.COM".
>>> Last update of whois database: 2022-06-07T06:12:46Z <<<
(...)
osiris@erazer ~ $

Anyway, regarding your question:

Personally I try to put hostnames which serve the same site, even if their hostnames differ, into a single certificate. That goes especially, for me, for subdomains such as www. But a different TLD such as .com and .school for exactly the same "target" (i.e. "rsvlelectrician") can also go into the same cert if you'd ask me.

system · July 7, 2022, 6:14am

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.