Problem adding new domain to existing certificate

turbo · February 4, 2017, 5:24pm

I just tried to add a new domain to my existing certificate. Looking at the documentation for certbot

--expand If an existing cert covers some subset of the
requested names, always expand and replace it with the
additional names.

I used the following commandline on Debian
$certbot certonly --standalone --rsa-key-size 4096 --expand -d newdomain.com

The process started sucessful and created a NEW cert next to the one I wanted to "expand". Any ideas what I am missing?
I am under the impression, that this command would add the new domain into the current cert and not creating a new additional certificate.

Thank you for any hints.

Osiris · February 4, 2017, 5:26pm

Yes, you forgot to name (with -d) the FQDNs of the certificate you wanted to expand.

certbot can’t know to which certificate you want to add the new domain. The idea is you enter the domains of the certificate you’d like to expand and the domain you want it to expand with.

turbo · February 4, 2017, 5:30pm

Thank you for this info. I started this post before I noticed the reply in my previous one which answered this at the same time.

Sorry for the kind of “double post”

system · March 6, 2017, 5:35pm

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Add another Domain (initial install via "./certbot-auto certonly") Help	3	1385	June 15, 2018
Expanding existing certs created with --webroot Help	5	1745	May 16, 2017
How to add additional domains to a multi-domain certificate Help	2	784	June 2, 2018
Extend certificate by one altname Help	2	3613	December 29, 2016
Certbot - Add Extra Domains to Certificate using --expand flags Help	5	25380	July 6, 2017

Problem adding new domain to existing certificate

Related topics