SSl certificte issue

root@APPP002:~# sudo certbot --apache
Saving debug log to /var/log/letsencrypt/letsencrypt.log

Please choose an account

1: APPP002.x.y.local@2019-06-30T06:45:43Z (360e)
2: APPP002.x.y.local@2020-10-18T09:27:20Z (33fc)

Select the appropriate number [1-2] then [enter] (press 'c' to cancel): 2

Which names would you like to activate HTTPS for?

1: appp002.x.y.local

Select the appropriate numbers separated by commas and/or spaces, or leave input
blank to select all options shown (Enter 'c' to cancel): 1
Requesting a certificate for appp002.x.y.local
An unexpected error occurred:
The server will not issue certificates for the identifier :: Error creating new order :: Cannot issue for "appp002.x.y.local": Domain name does not end with a valid public suffix (TLD)
Ask for help or search for solutions at See the logfile /var/log/letsencrypt/letsencrypt.log or re-run Certbot with -v for more details.

What is the issue? I am always using this way for ssl in this host.

The issue is that no public CA will provide a cert for the TLD ".local"
It is not a domain that you could ever show control over nor ownership of.


I think this is a duplicate of your prior topic, where you were told the same thing.


I agree with @petercooperjr and I'm closing this thread as duplicate of your previous thread.