So… I have cert i generated a couple months back using a csr from an existing app:
./certbot-auto --manual --preferred-challenges dns certonly --csr /home/jsmith/mysub.csr -d mysub.mydom.org
which gave me:
0000_cert.pem 0000_chain.pem 0001_chain.pem files in the cwd where i ran certbot-auto from. Awesome. I used the certs. they worked great.
I recently (today) got dns-route53 working with certbot and i’ve renewed a couple certs with it. certs that were already in /etc/letsencrypt and they were detected and renewed automagically with just:
./certbot-auto certonly --dns-route53 -d mysub2.mydom.org
./certbot-auto certonly --dns-route53 -d mysub3.mydom.org
My question is how do i convert mysub.mydom.org cert i created via a manual method with a custom csr? The pem files were just placed in the CWD. How do i make it renewable? Be part of the /etc/letsencrypt dir… Do i create all the paths and files that’s similar to mysub2.mydom.org which has it’s own live/ and archive/ dirs etc… in /etc/letsencrypt? i’m ok with that if i knew what all those dependencies are. Is there a better way?
Thanks for any help and thanks for letsencrypt!