Aim:
Need to generate a certificate from LE using certbot, which should support two domains and also will use the csr generated by our enterprise for the same
For instance
2 domains are - “proxy.abc.net” and “.proxy.abc.net" (with and without wildcard "”)
CSR has the above 2 domains in it’s SAN List.
But when tried to generate the cert using the Certbot command:
certbot certonly --preferred-challenges dns --manual --manual-auth-hook <pre_hook_script>
–server <local_boulder_server> -d “proxy.akaetp.net” --csr <path_to_csr_file>
–register-unsafely-without-email --manual-public-ip-logging-ok --agree-tos
Noticed the following Error:
usage:
certbot [SUBCOMMAND] [options] [-d DOMAIN] [-d DOMAIN] …
Certbot can obtain and install HTTPS/TLS/SSL certificates. By default,
it will attempt to use a webserver both for obtaining and installing the
certificate.
certbot: error: unrecognized arguments: /etc/letsencrypt/live/csr.pem
Can you please help in resolving the same. Blocked at this point. Thanks in advance.
You must use DNS authentication for WildCard cert.
And I do see that you are trying to do that… but without sharing the actual command you typed, it is nearly impossible to guess what is typed incorrectly.