I am trying to move to the usage of csr when requesting certificates and renewing.
I have successfully made a csr and obtained a certificate with it using certbot.
But for some reason the certificate is not put in /etc/letsencrypt/live/$domain as expected and it is named like this: 0000_cert.pem, 0000_chain.pem and 0001_chain.pem
Is this expected behavior when using the certonly --csr option?
Is there a way to make the certbot client still put the files in /etc/letsencrypt/live/$domain structure when using csr?
I used this command to request certificate for my testing subdomain:
/certbot-auto certonly --csr /path/to/letsencryptbyeskilleno.first.csr -d letsencrypt.byeskille.no -d www.letsencrypt.byeskille.no --webroot -w /path/to/webroot/html --expand
The output was like this:
No handlers could be found for logger “certbot.crypto_util”
- Congratulations! Your certificate and chain have been saved at
/opt/certbot/0001_chain.pem. Your cert will expire on 2016-09-09.
To obtain a new or tweaked version of this certificate in the
future, simply run certbot-auto again. To non-interactively renew
all of your certificates, run “certbot-auto renew”
- If you like Certbot, please consider supporting our work by:
In advance, thanks for all helpful advice!