Distributed site encryption

Hi, I don’t know how to get a certificate for my entire environment. Here’s a diagram:


I have successfully installed LE certs on the redirect host (which has a few local sites) and the primary host for the domain sailtracker.net. However, this domain also has a second server running RoR (which can run independent of the wordpress site) and performs specific functions which are best on a separate host. I don’t know how to get a cert issued for this server as it’s just a path on the redirect site and doesn’t respond directly to a domain name.

How can I configure SSL on this application server?

My domain is: sailtracker.net

I ran this command: certbot-auto certonly

It produced this output: Challenge failed for domain sailtracker.net

My web server is (include version): Ruby on Rails

The operating system my web server runs on is (include version): Ubuntu 14

My hosting provider, if applicable, is: N/A

I can login to a root shell on my machine (yes or no, or I don’t know): Yes

I’m using a control panel to manage my site (no, or provide the name and version of the control panel): no

The version of my client is (e.g. output of certbot --version or certbot-auto --version if you’re using Certbot): certbot 0.35.1

Hi @luminarycrush

isn't it possible to distribute the existing certificate?

It's your internal network, so you can copy the certificate files to the second server.

Or use dns-01 validation to create a certificate with the same domain name. But a copy should be easier.

I didn’t know that was allowed - I thought the cert had to be unique for the host. I’ll try that…


Worked, no issue. That was easy. Thanks!


The certificate knows nothing about your hosts. Only the domain name is relevant.

Wonderful :+1:

1 Like

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.