I have a VPS running Ubuntu 16.04 & Apache, with a multi-site install of WordPress, which uses domain mapping to serve several different websites. I’ve successfully set up the certbot to generate and update the certificate for the primary domain (https://zaneselvans.org/) but have been unable to figure out how to configure Apache to use additional certificates (or the same certificate with additional domains added to it – which is the preferred way to do it?). Because WordPress is redirecting requests internally, there aren’t really separate Apache configuration files into which I can insert a <VirtualHost *:443> directive… at least not that I’ve been able to find.
Right now I’ve got a certificate with the full list of domains on it, and it apparently works, since when I go to one of the other domains that have been mapped (e.g. https://amateurearthling.org/) I get a valid SSL indication from the browser, but a 403: Permission Denied. My guess is that this means the problem is with the permissions/access to the DocumentRoot that’s associated with the secure VirtualHost. But since it’s not clear to me what .htaccess or configuration file is controlling those permissions, I don’t know where to try and give it access. The insecure versions of the mapped domains work just fine – but really I want to force HTTPS on all of them.
I realize this is more of an Apache/WordPress configuration issue… but I’m hoping someone here has come across it already and there’s an easy fix that I’m just doing a bad job of searching for. Thanks for all your work on making encryption of the web ubiquitous!