I generate/renew my certificates using the challenge by running: “letsencrypt-auto certonly -a manual …”
But my domains normally redirect all http requests to https, so I’ve been temporarily disabling that redirect when doing the challenge so that it succeeds from http, which is a bit annoying.
Is there any way I can complete the challenge using https directly, to save myself this trouble? Is this what the TLS-SNI-01 challenge is for? Do I just pass some command-line flag to letsencrypt-auto?
Thanks for the help!