Enable HTTPS without forcing it

I am looking to use certbot to add HTTPS to my site, but I need to retain backwards compatibility with legacy browsers that only support HTTP. Is there a way to do this without adding a different subdomain for the secured version of the site?
My server is ran on apache is it helps.

You can do that.

You might want to get the certificate without installing it (certbot certonly),

then create a https virtualhost following instructions on ssl-config.mozilla.org (do not remove or add another virtualhost on port 80),

and lastly run certbot reconfigure --cert-name $SOMETHING --deploy-hook "service apache reload" (or a different apache-reloading command)

4 Likes

Out of curiosity, what kind of (real world) browsers are you referring to?

4 Likes

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.