Hello,
Because reasons (having to do with recent client auth EKU changes), I have a need to have two certs, with the same FQDN, on a server, one from let's encrypt, and another from a separate CA.
I am using the latest snap stable certbot version on ubuntu.
I can achieve this through certbot by specifying a separate config directory when doing 'certbot certonly' to grab the second cert, but this has no impact on renewal, as when I do renewal dry run's or just the 'certbot certificates', the other directory doesn't come up.
Is there an advised way of having this setup, I know I shouldn't get into changing the snap config, but I couldn't see a clean way of doing it via a cli.ini file either.
Is just doing a cron job where I run something like 'certbot -q renew --config-dir /path' really the best way of doing this?
Thanks in advance!