Hi @schoen, I am back to my NGINX server… It is working (!). I redo all machine… See Notes below.
And certificates are all there, but analyzing it with
https://www.ssllabs.com/ssltest/analyze.html?d=oficial.news
we get Overall Rating B (not A), and a error: https://weakdh.org/
PS: after I redo by certbot --nginx --cert-name oficial.news and answering “Renew & replace the cert”… No solution.
NOTES
Steps used to work at a “fresh” UBUNTU 16 LTS (and standard nginx-on-ubuntu-16-04 installation) server:
0. ad a VirtualHost to domains. Even when running (HTTP fine), Cerbot needs a nginx.conf fragment script (the parse detects server{} clauses and its server_name variables) for each certified domain or subdomain.
1. do all https://certbot.eff.org/#ubuntuxenial-nginx commands with su, apt install software-properties-common, add-apt-repository ppa:certbot/certbot, etc.
2. run command certbot --nginx (as the same ubuntuxenial-nginx instruction), and answered the questions with yes, domains and subdomains… All domains and subdomains detected.
3. run service nginx restart.