Download cert to two machines


#1

Does LE keep its own copies of the certificates that it generates?

I have a specific certificate, and I want to install it on two separate machines. Is it possible that I can go to machine 1, generate and receive a certificate; and then go to machine 2, and ask LE to just send me the same certificate?

I know there are many other, better ways to do this. I’m just wondering if this is possible.

–hymie!


#2

Yes you can. You would need to know the location for the certificate ( which is given, and where you obtain the certificate from the first time).

As you say there are many other, better, ways to do it - it is possible though.


#3

No, at least not in a useful way. You can easily get a copy of the cert that Let’s Encrypt generated–if not from LE itself, then from any of the transparency logs (see https://crt.sh, for example). But LE can’t send you, because it doesn’t have, the private key associated with that certificate, and without that private key, that cert isn’t very useful.

To accomplish what you’re trying to do, you’d need to, at a minimum, copy the private key from machine 1 to machine 2–and if you’re going to do that, it’d be much easier to copy the corresponding cert at the same time.


#4

I agree that the key etc is needed. They may keep the same key though (copied once), and just obtain the certificate on renewals.

It is possible to obtain the certificate though Let’s Encrypt. As both you and the original poster state though, it’s probably not the best way of doing things :wink:


#5

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.