Hello:
When using the LetsEncrpypt client (Ubuntu 16.04 LTS) …
sudo apt-get install letsencrypt python-letsencrypt-apache
sudo letsencrypt
everything worked fine, except it lumped all the virtual domains together (I selected them all with LetsEncrypt when asked which names that I wanted to activate).
This wasn’t so much a problem, as they were part of a sequence;
mydomain.com
www.mydomain.com
mydomain2.com
www.mydomain2.com
mydomain3.com
www.mydomain3.com
But it chose www.mydomain2.com as the main (Certificate Subject) for all the certificates, and I would have preferred mydomain.com instead for this grouping as the main subject.
They all come up fine, unless you look at the certificate data and have to look to see that the domain is listed in the Certificate Subject Alt Name, most people are just going to care about it showing as secure, and not look at the actual certificate contents.
What is the correct way to do each virtual domain as separate certificates?
If I have different unrelated virtual domains that I do not want lumped together on the same server, this would be a problem.
What is the best way to separate out the existing certificates to separate certificates?
Maybe in the future the client should ask if the Virtual Domains should be lumped together into one Certificate, or Separated in to Individual Certificate pairs (yourdomain.com www.yourdomain.com).
Thank you!
John