I ran this command:
/usr/local/bin/certbot-auto certonly --nginx
It produced this output:
I let the choice empty to make two certificates for two domains.
The success message was only for one (see above). So I startet the command angain and chose the second domain https://vam-teningen.de.
You can see that the second domain works. The same config with target to the second portal kindersachenflohmarkt-teningen and it doesn’t work. Funny is that ssllabs.com/ssltest says when checking http://vam-teningen.de, there are alternative names with names of both portals… Is the problem that there is now one certificate for both portals and one domain is hosted by another hoster?
My web server is (include version):
nginx
The operating system my web server runs on is (include version):
debian 9
My hosting provider, if applicable, is:
the portals and the second domain (vam-teningen.de) are on hostservice 1blu.de and the second domain (kindersachenflohmarkt-teningen.de) is hosted by Strato.de and there is a proxy forwarding to the address with ip (port 80) to 1blu.
I can login to a root shell on my machine (yes or no, or I don’t know):
yes
I’m using a control panel to manage my site (no, or provide the name and version of the control panel):
putty for debian and filezilla for ftp. For the portals there is a client on my pc.
The version of my client is (e.g. output of certbot --version or certbot-auto --version if you’re using Certbot):
I hope somebody can help me to let the second domain run with ssl…
I don’t know if there is anything wrong with the certificate or with the nginx-config…
Thank you a lot for help!
Did you change your dns A records? Normally, you can't create a certificate via --nginx with two domain names, if the two domain names have different ip addresses and if you run certbot on one ip address.
“what’s a proxy forwarding?”
good question. I took this at Strato, because they wrote that the user see the source domain name, not the target IP (301 forwarding).
“Where runs your Certbot?”
The Certbot is running at 1blu, where the vam-teningen.de domain is hosted, too.
I ordered at Strato only the domain (I wouldn’t have done it when I know what there are for problems).
“there are three Letsencrypt certificates:”
Yes, I tried to make new certificates for only one domain… I thought that at the end there is only one certificate…
“Did you change your dns A records? Normally, you can’t create a certificate via --nginx with two domain names, if the two domain names have different ip addresses and if you run certbot on one ip address.”
No, I don’t know where I can chance dns records. That sounds logical what you say… Is there any possibility to get the Strato domain kindersachenflohmarkt-teningen.de with a ssl?
I have only root rights at 1blu server…
I wrote Strato and they now answer that I have to make the certificate at 1blu, where the system is and then it must work (they say). I'm uncertain what to do now.
Perhaps I will call both hoster to ask how fast I can change the hoster of the domain. The time runs...
That is the portal software I need to edit the two portals and develop the applications (low code platform) and it runs on the 1blu server, yes.