The sites are functional, with IP1 having Let's Encrypt SSL cert attached to it.
IP2 currently doesn't have any certs bound to it.
I saw this in searching:
... and it seemed to suggest that I should be able to create multiple ACME accounts, so I ran this command:
# certbot register -m user@example.com
It produced this output:
Saving debug log to /var/log/letsencrypt/letsencrypt.log
There is an existing account; registration of a duplicate account with this command is currently unsupported.
My web server is (include version): Apache 2.4.27
The operating system my web server runs on is (include version): Ubuntu 17.10
I can login to a root shell on my machine
I am not using a control panel to manage my site.
How should one go about having two separate groups of certificates?
As the account info is saved into the renewal conf files /etc/letsencrypt/renewal/* a certbot renew command should work to renew the existing certificates with the right account.
As @Osiris said, certbot can manage multiple certificates and doing this will add complexity to the process.
Disclaimer: I did not test this procedure so do it at your own risk… and before doing anything, backup your /etc/letsencrypt/ dir… just in case
@Osiris - correct, I would like to keep the domains on one IP grouped together and registered with one email address distinct from the domains on the other IP and its email address.
@sahsanu - it looks like it’s worked, in that the new account created, then I moved old account back, created new certs explicitly quoting new account, and then checked in renewal conf and confirmed differing account UUIDs.