I have been able to manually generate certificates and have them installed and working but I had to generate one for the main domain (boxstorm.com) and one for (app.boxstorm.com) and then configure them as separate server blocks in the nginx.conf file, each server with its own certificate/key entries. What I’d really like is to create a SAN cert so that we can just use one certificate. Is that doable on Windows or with the client listed below? Or is there some step after the .cer and .pfx file creation that I can used to combine certificates together in the a SAN certificate? Thanks!
My domain is: boxstorm.com
I ran this command: We used one of the Windows clients listed on letsencrypt’s site (https://github.com/oocx/acme.net) – just downloaded the acme.exe and used that to generate the certs.
It produced this output: The client generate two different “challenge” files, which I copied onto our webserver, in the correct “.well-known…” location. The challenge completed successfully and two .cer files and two .pfx files were generated. After the .pfx was generated I used openssl to extract the .pem and .key file–these were the files used in the nginx.conf to configure https.
My operating system is (include version): Windows server 2012, .NET framework v 4.6
My web server is (include version): nginx 1.4.7
My hosting provider, if applicable, is:
I can login to a root shell on my machine (yes or no, or I don’t know): yes
I’m using a control panel to manage my site (no, or provide the name and version of the control panel): no