I have 2 issued certificates:
/archive/example.com/cert1.pem
example.com
www.example.com
admin.example.com
stats.example.com
cdn.example.com
/archive/foo.example.com/cert1.pem
foo.example.com
I realized that foo.example.com
was best consolidated onto the example.com
cert.
I ran certbot with --expand
and enumerated all the domains I wanted
That successfully gave me a new cert as /archive/example.com/cert2.pem
Great.
I’m left with two concerns that I couldn’t find in the docs:
-
Looking at the code, it seems to just try and auto-detect which certificate has the most similar domains and uses that as the destination. It’s not possible to specify a target destination – is it? (i.e. expand onto
foo.example.com
or some new name) -
It looks like the single cert for
foo.example.com
would still auto-renew and needs to be deleted from the system – correct?