Certificate renew for multiple CA provider using certbot

dushyantk.sun · March 22, 2026, 8:43am

I manage webservers for multiple domain and also need to renew certs for them. Those domain provided by different CA provider such go daddy,sectigo etc.
I am looking for solution to automate cert renew without manual interaction for these CA provider on webserver.

Osiris · March 22, 2026, 8:55am

Do these CAs even provide ACME endpoints? What have you found yourself so far?

dushyantk.sun · March 22, 2026, 9:40am

yes those CA provider does have Acme endpoints. However i am not sure how to integrate with cerbot to renew cert on my apache servers so that it auto renew once it is due for ssl renewal

danb35 · March 22, 2026, 8:18pm

Why are you using certbot rather than mod_md? Using the solution that's integrated with your web server seems like a cleaner course of action than using a third-party tool like certbot.

dushyantk.sun · March 23, 2026, 12:11am

@danb35 , There is no support of mod_md for Apache traffic server ATS. hence need to explore option using certbot(acme). However i am still figuring out on how to integrate it with apache traffic server

orangepizza · March 23, 2026, 12:46am

like how may webserver apache foundation have? httpd, tomcat, traffic, what else?
think you'd have to use DNS challenge or config proxy to somewhere and use standalone challenge with --http-01-port option for certbot

dushyantk.sun · March 23, 2026, 5:13am

I have more than 200 apache traffic server in active/backup mode. Also those has different CA provider such go daddy , sectigo, digi cert. So i was looking if i could renew cert on one active node at a time vi cert bots.
Do you have any use case where it is implemented.

orangepizza · March 23, 2026, 5:16am

backup node won't able to renew itself by http-01 challenge (because they currently doesn't host that website) what you do currently doing to renew certificate for those servers?

dushyantk.sun · March 23, 2026, 5:41am

Backup node also has same certs however traffic is going on active node currently. backup node will gets active when original active node fails.
Currently i am doing ssl cert renewal one at a time by manual copying certs on those ndoes.
I want to automate ssl renewal so that these nodes gets certs on its own.

orangepizza · March 23, 2026, 5:56am

What you do to get that certificate files?

For installing part I would just put cert in central place and node download it by cron script
Getting a cert is different can though

Topic		Replies	Views
Renewal of certificate Help	2	404	September 16, 2023
Automate cert renewal from different server Client dev	3	3562	April 23, 2017
New certificate provider, updating existing certificates? Help	11	221	March 29, 2025
Can't get certs auto-renew on apache in front of tomcat Help	6	630	October 15, 2023
[Resolved] Issue to renew 2 certs on the same server Help	6	660	May 9, 2020

Certificate renew for multiple CA provider using certbot

Related topics