[SOLVED] Cert Creation | WWW Prefix needed?

steffi · March 10, 2023, 12:23pm

Hi.
I need to have a cert for a domain without www.-suffix. Please see below, what I did and what I got. I am not running an own nameserver and my ISP is not providing deep subdomaining like sub.sub.domain.tld.
Can you advice?
Thanks,
Steffi

certbot certonly --webroot -d sub.domain.tld --webroot-path /srv/http/vhosts/sub.domain.tld/

Requesting a certificate for sub.domain.tld

Certbot failed to authenticate some domains (authenticator: webroot). The Certificate Authority reported these problems:
  Domain: sub.domain.tld
  Type:   dns
  Detail: 130.xxx.xxx.xxx: Fetching http://www.sub.domain.tld/.well-known/acme-challenge/jkIAAwwatTmxg97JezQ-tC9JkTfHpio6LXJR8izssjE: DNS problem: NXDOMAIN looking up A for www.sub.domain.tld - check that a DNS record exists for this domain; DNS problem: NXDOMAIN looking up AAAA for www.sub.domain.tld - check that a DNS record exists for this domain

danb35 · March 10, 2023, 12:29pm

I'm sure you mean a www prefix, not suffix. But with that said, it rather looks like sub.domain.tld is trying to redirect to www.sub.domain.tld, which fails due to the latter not having DNS records. But without your sharing the domain name, it's impossible to tell.

linkp · March 10, 2023, 12:29pm

It is impossible to offer much in the way of help without a real domain name. The output you shared indicates that you have no DNS for the hostname, though. That will prevent you from obtaining a certificate.

steffi · March 10, 2023, 12:37pm

You are right, I meant prefix, not suffix like I wrote.
Sorry for my bad English.

steffi · March 10, 2023, 1:00pm

Your answers impled that it is possible to create a cert without www.-prefix.

So I disabled the SSL-Definition for that virtual host, and reloaded apache again.

Now it worked.

Thank you very much for your help!

Steffi

danb35 · March 10, 2023, 1:03pm

Indeed it is.