Increase in Names/Certificate limit


#1

I would like the Names/Certificate limit increased to 250 names, or websites, per certificate issued.


#2

I agree with that request!


#3

Off-topic: I’m a bit confused. Does this limit says how many certificates you can have on 1 domain name? Or can you issue a certificate which contains multiple domains? If so, how?

Ps.
So there is a difference between:
letsencrypt certonly -d my.domain.com
vs
letsencrypt certonly -d my.domain.com -d my2.domain.com

In terms of limitations? I don’t get it…


#4

letsencrypt certonly -d my.domain.com -d my2.domain.com

would have a single certificate which is valid for both my.domain.com and my2.domain.com Since this is a single certificate it counts as 1 in terms of the limit of 5 certs / domain /7 days.

You can have up to 100 SANs ( my.domain.com and my2.domain.com in your example above) on a single certificate.


#5

Thanks for explaining. O well, too bad I didn’t knew. I knew about the limits. But I didn’t knew it makes a difference to combine them together. -,-

Now I already got:

Too many certificates already issued for


#6

Why do you need that many names in a single certificate?


#7

I have domains that have 250 subdomains which, in Virtualmin are ‘Alias Domains’. As such I cannot allocate more than one cert to the domain.


#8

In that specific case you’d be probably better off using a wildcard certificate.


#9

Yes, I realize that will be my only option, unless Let’s Encrypt increases its limit. Hence my feature request.


#10

You can always split you Virtualhost in 3 vistualhost that are identical except for the aliases. Then you can have 83 alias on the first and second and 84 on the third.

But yes, a wildcard would definitely easier…


#11

Thank you, I hadn’t considered that. I’ll definitely look into it. A bit of work but I like the idea of saving the cost of a wildcard.


#12

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.