Quick question about SAN for a Wildcard SSL cert

fitter_happier · January 25, 2023, 2:45pm

Hello. My domain is traveltek.net. We have a wildcard which you can see on a site such as here,

fusion.traveltek.net

I'll attach a screenshot of the SAN details. It only covers *.traveltek.net

I am actually wondering if it's possible to also create a SAN on this cert which covers just traveltek.net as well.

The command we have in our automaton for auto renewing this wildcard looks like this,

/usr/bin/certbot certonly --dns-route53 --email domains@traveltek.net -d *.traveltek.net --agree-tos --non-interactive --preferred-chain "ISRG Root X1"

We are running Certbot version certbot 1.32.2 on Ubuntu 20.04.5 LTS

Would changing our script to this do the job?

/usr/bin/certbot certonly --dns-route53 --email domains@traveltek.net -d *.traveltek.net -d traveltek.net --agree-tos --non-interactive --preferred-chain "ISRG Root X1"

Thanks.

MikeMcQ · January 25, 2023, 3:14pm

Yes, it should. You could even add --dry-run to test with the staging system and not disturb your production certs.

If --dry-run works then just remove it to get the production cert.

fitter_happier · January 25, 2023, 3:21pm

Thanks very much!

system · February 24, 2023, 3:22pm

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Wildcard Certificates Help	15	290	May 3, 2024
How to create SAN certificate on Ubuntu 18.04 Help	6	6956	December 26, 2019
Migrating from subdomain individual certs to a wildcard cert for for primary domain Help	10	592	August 14, 2022
Wildcard sub domain not working Help	5	562	November 10, 2020
Confirm : Renew on wildcard Help	4	746	July 22, 2022

Quick question about SAN for a Wildcard SSL cert

Related topics