Three Domains getting Confused

I’m just waiting on permission to reboot nginx. While I do I’ll just ensure that I’ve got things right.

I’ve updated the nginx advanceroofing.co.nz.conf file, adding a redirect to HTTPS and ensuring the server block handling port 443 is pointing to the letsencrypt certs.

I’ve checked the letsencrypt certs. The certificate path and private key path are symlinked to files stored the archive directory. All of those files exist.

I’m hoping I can take one step at a time to correct everything. Or do I need to manage the balclutha domain and certs at the same time?

1 Like

It looks like balcluthaglass.co.nz (Amazon) is hosted completely separately from advanceroofing.co.nz and grafterroofing.co.nz (Digital Ocean). Is this true? If so, I see no harm in waiting. They should be certified separately anyhow. The only relation balcluthaglass.co.nz has to advanceroofing.co.nz and grafterroofing.co.nz is the certificate confusion. It’s basically just a case of misprinting name badges. :smile:

1 Like

I have https://advanceroofing.co.nz and https://grafterroofing.co.nz up and running.

thank you @freessltools.com and @PepeBergen09 for your advice and assistance.

I’ll start looking at the issues with balcluthaglass.co.nz now.

2 Likes

I’ve been speaking with the web developer. They would prefer the website to be served from the machine I’m working with. However, the letsencrypt archive directory for that domain only contains the certificate with serial number starting 04:7f:5f. It expired 2020-05-10.

Without the correct certificates, how do we proceed?

1 Like

You can just copy over and manually install the correct certificate and private key onto that machine. As long as it’s serving the certificate corresponding to its domain, it doesn’t matter if the machine is a smart watch. The other option is just to create a new certificate(s) on that machine for the domain(s) being served from that machine so that you can use the auto renew.

1 Like

OK. I’ll get on with it.

thanks again

2 Likes

You’re welcome. :slightly_smiling_face: Just remember to use https://crt.sh to verify your situation and keep organized.

1 Like

Will do. It’s a great resource and new for me.

2 Likes

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.