Problem adding new domain to existing certificate

turbo · February 4, 2017, 5:24pm

I just tried to add a new domain to my existing certificate. Looking at the documentation for certbot

--expand If an existing cert covers some subset of the
requested names, always expand and replace it with the
additional names.

I used the following commandline on Debian
$certbot certonly --standalone --rsa-key-size 4096 --expand -d newdomain.com

The process started sucessful and created a NEW cert next to the one I wanted to "expand". Any ideas what I am missing?
I am under the impression, that this command would add the new domain into the current cert and not creating a new additional certificate.

Thank you for any hints.

Osiris · February 4, 2017, 5:26pm

Yes, you forgot to name (with -d) the FQDNs of the certificate you wanted to expand.

certbot can’t know to which certificate you want to add the new domain. The idea is you enter the domains of the certificate you’d like to expand and the domain you want it to expand with.

turbo · February 4, 2017, 5:30pm

Thank you for this info. I started this post before I noticed the reply in my previous one which answered this at the same time.

Sorry for the kind of “double post”

Topic		Replies	Views
How to add new domain to existing certificate Help	2	3672	March 14, 2017
Expanding existing certs created with --webroot Help	5	1820	May 16, 2017
Certificate expand without specifying older domains Feature Requests	5	2508	June 7, 2017
Certbot - Add Extra Domains to Certificate using --expand flags Help	5	25594	July 6, 2017
Add another Domain (initial install via "./certbot-auto certonly") Help	3	1449	June 15, 2018

Problem adding new domain to existing certificate

Related topics