I have a couple of servers with sites available only to hosts on our network. I wanted to use letsencrypt for certificates, but found it difficult to accomplish this without exposing them to the internet. I had one server that was already exposed to the internet, so I created a virtual site in apache that matched the internal site. I was able to get a certificate from letsencrypt and scp it over to the internal server. I can now connect to the internal site without any warnings and it shouldn’t be difficult to automate the whole process.
Is this a good method to accomplish my goal or am I misusing this service? Is there an easier/preferred method to authenticate internal servers? Am I introducing potential security risks? Thank you for your help.