Hi there. I set up Let’s Encrypt via certbot yesterday; certbot 0.14.2, Ubuntu 16.04.3, nginx 1.12.1. All working fine. Qualsys SSL report gives the site an A rating.
My question: I have various domains all pointing to the same particular site, and a single certificate for all of them. That’s fine. For example, say it’s aaa.com, bbb.com, and ccc.com. Certbot automatically named the certificate with the alphabetically-first one (aaa.com), but I’d prefer the cert name to be my primary domain, say ccc.com (purely for aesthetics, and for visitors who know enough to at least check the cert info in their browser).
Am I correct in thinking that I must use “certbot certonly” to create a new cert, update my nginx configs to point to it, then revoke and delete the old cert? I skimmed the certbot user guide and didn’t find a way to update the displayed name of the same cert.
If the above is true, a second question: would the change in cert cause any visitor-facing issues, like browser warnings or such? Fairly new to this. Thanks very much for certbot and Let’s Encrypt.