First off, “thank you!” to EFF & the Certbot team for making this available, it’s truly appreciated!
I’m trying to work out how to make Certbot work when the web server is on one VM (acting as a “front end” so to speak), & various subdomains are redirected to other VMs running Tomcat & Liferay. My boss has told me that the front-end VM should be the one running Certbot - for all domains. (It’s probably worth noting that I was able to get it working with Certbot running on the subdomain VMs.)
Our setup is as follows:
WWW server (CentOS 6.9 & Apache httpd 2.2.15-60.el6.centos.6)
App server (CentOS 6.9 running Apache Tomcat 7 and Liferay Portal Community Edition 6.2)
Hosting provider is Digital Ocean, yes to root login access, no use of any control panel.
I’ve spent a good bit of time reading the documentation before beginning this post, but I haven’t found anything that addresses this one (two-part) question -
Is it possible to make Certbot work when running on the front-end web server for domains that are re-routed to “secondary” servers? And if so, how??
(I would prefer not to use the DNS challenge, only because our DNS is hosted by a separate provider whose interface is distinctly NOT automation-friendly.)
Thanks in advance for any help you can provide.