I have no problems creating certificate for the domain www.mydomain.net or mydomain.net
But since I have a managed dns on the domain I also have the DNS myotherplace.domain.net.
This is located on another site and different ip adress.
I’m able to issue certificate at that site with opening the port 80 but not using the dns-01.
This works for the domain:
certbot-auto -d domain.net --manual --preferred-challenges dns certonly
but this does not work with the correct TXT value in the dns host setting:
certbot-auto -d myotherplace.domain.net --manual --preferred-challenges dns certonly
Maybe this is how it should be but I’m not sure?
Maybe the TXT record only is valid on the root domain and not hosts?
Maybe the better solution is to use the wildchart certificate for both?