I just set up let’s encrypt successfully on a standard apache2 installation on debian with two virtual hosts.
What I want to do now, is to set up a second dedicated host in a different location (different IP) which would be accessed in the case of downtime of the primary server through a dns failover service.
As far as I know, let’s encrypt / SSL is not tied to the IP, but rather to the Domain itself. So it should be possible to use the same set of keys/certificates for the failover host. Unfortunately, I couldn’t find anything on the web. So I’m just asking here: How would I proceed?
Is it sufficient to just rsync the contents of /etc/letsencrypt as well as the apache configuration files to the failover machine, or are there additional or divergent steps involved?