- OS: CentOS 6.7 (final)
- Webserver: Apache 2.2
- No panel
- Have root CLI access
- No utility like certbot or letsencrypt installed
- Certificate issued for multiple domains
Client has issues with his previous dev (that also maintained the server and certificates), and the certificate will expire tomorrow. Need to renew only for specific domain, so if it is possible it will be nice. Or for all domains if it’s impossible.
In CLI history log I see repeating command sequences like:
985 vi /etc/pki/tls/certs/private.key
986 vi /etc/pki/tls/certs/certificate.crt
987 vi /etc/pki/tls/certs/ca_bundle.crt
988 find / -name vhosts.conf
989 vi /etc/httpd/conf/vhosts.conf
990 service httpd restart
These are the only actions that somehow connected to certificates, so I conclude that these commands are part of the renewal process.
I’d like to repeat this, but googling this hasn’t helped to understand the process and we’re running out of time.
Or maybe we should wait until the certificate is fully expired and then we’ll be able to create a new certificate?.. I’m not sure how much downtime will be involved in this case. Also, if multiple domains certificate expires - is it possible immediately after that to issue a new certificate for a specific domain only?
Appreciate any useful instruction, tip or idea.