Hi ..
I ran this command using ansible to create request and receive certificate
cmd: "{{ certbot_script }} certonly {{ certbot_staging }} \
{{ renew_certificate|default() }}
--standalone \
--noninteractive \
--agree-tos \
--preferred-challenges http \
--email {{ certbot_admin_email }} \
--rsa-key-size {{ certbot_rsa_bits }}
--http-01-address 0.0.0.0 \
--http-01-port={{ certbot_port }} -d {{ cert_item }}"
It produced this output:
Congratulations you receive certificate.
My web server is (include version):
we not use webserver. we use haproxy to send request to cerbot backend wich is installed in same haproxy server, so we run using standalone to do cerbot start webserver it self
The operating system my web server runs on is (include version):
CentOS 8
My hosting provider, if applicable, is:
AWS
I can login to a root shell on my machine (yes or no, or I don't know):
yes
I'm using a control panel to manage my site (no, or provide the name and version of the control panel):
no
The version of my client is (e.g. output of certbot --version
or certbot-auto --version
if you're using Certbot):
1.20
Question: Is possible "force lets encrypt do the challange in http-01" every time we test request using --force-renewal ?
because we see this behavior
1- cerbot first time get certificate (we need to do this process many time meanwhile developing the ansible role using --staging api of course) but
2- when cerbot run again using --force-renewal we see certbot never start again standalone server it self to do the challange.. is like "download from lets encrypt the already certificate" wich is fine in this case
3- we revoke the test certificate and everything about it is deleted on server.
4- Re-run again... and download the certificate... not start again standalone server it self
we need make test configurations using other loadbalances and send traffic to certbot backend for the challange http-01 but can't do it.
we won't create many records test1,2,3,4,5.....1000.ourdomain.com to see only 1st time the challange everytime we need to test it.
thanks in advance