I just found the Let’s Encrypt project and i’m loving it!
I am running into a problem with one of my setups.
This setup has two servers for the same domain, so I will need two certificates to use HTTP/2.
I was able to register the first Let’s Encrypt certificate with no problem.
The second server is attempting to validate by resolving to the wrong ip address.
What I am trying to do is use the ACME Challenge to redirect the request to the other server.
Is this the correct way register two certificates for the same domain on two different servers?
Here is what i’ve tried and done so far:
My letsencrypt file directory is at /home/ubuntu/letsencrypt/
In apache2.conf I have added
Alias /.well-known/acme-challenge /home/ubuntu/letsencrypt/
Options Indexes FollowSymLinks
Require all granted
This server has a valid certificate.
I am 301 redirecting all /.well-known/acme-challenge/ requests to SERVER A
This 301 redirect instead of to the domain, I am redirecting to the ip address. If I redirected to the domain, it would cause a redirect loop.
When I visit the link’s that are attempted by the ACME Challenge, they are 404 not found.
I am also seeing this after trying letsencrypt
Detail: Could not connect to
Here is the letsencrypt line I am typing:
Selecting 2 for webroot directory
Selecting 1 for new webroot
Entering /home/ubuntu/letsencrypt/ for my webroot
I think the issue is with the /.well-known directory and doing a search for that path finds nothing on my system.
What am I doing wrong and how can I get this to work?