Tengo un sitio que responde por varios dominios y, a su vez, con y sin www
, por lo que el certificado let’s encrypt tiene un Nombre Común y varios Nombres Alternativos.
$ certbot-auto certificates
Certificate Name: cert.com
Serial Number: 40d6f1a43875cf95b5eeb284c2902060d8e
Key Type: RSA
Domains: cert.com dom.com test.us play.cert.com win.cert.com www.cert.com www.dom.com www.test.us
Expiry Date: 2021-04-04 15:33:09+00:00 (VALID: 79 days)
Certificate Path: /etc/letsencrypt/live/cert.com/fullchain.pem
Private Key Path: /etc/letsencrypt/live/cert.com/privkey.pem
resulta que de este certificado se había cancelado, borrado, eliminado el sitio win.cert.com
por lo que necesitabamos bajarlo del DNS también. Si no modificamos el certificado, la próxima renovación automática de Let’s Encrypt produciría un error al no poder validar la existencia del sitio.
El procedimiento para eliminar un dominio es borrar el certificado en primer lugar:
$ certbot-auto delete --cert-name cert.com
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
The following certificate(s) are selected for deletion:
* cert.com
Are you sure you want to delete the above certificate(s)?
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
(Y)es/(N)o: (Y)es/(N)o: (Y)es/(N)o: (Y)es/(N)o: (Y)es/(N)o:
Al borrar el certificado no se afecta el servidor web que está corriendo, mientras el servidor no sea reiniciado.
Y se puede volver a tramitar un certificado, ahora con la lista de dominios excluyendo el que se quiere elimintar:
$ certbot-auto certonly -d cert.com -d cert.com -d dom.com \
-d test.us -d play.cert.com -d www.cert.com -d www.dom.com \
-d www.test.us
How would you like to authenticate with the ACME CA?
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
1: Nginx Web Server plugin (nginx) [Misconfigured]
2: Spin up a temporary webserver (standalone)
3: Place files in webroot directory (webroot)
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Select the appropriate number [1-3] then [enter] (press 'c' to cancel): 2
Plugins selected: Authenticator standalone, Installer None
Requesting a certificate for cert.com and 6 more domains
Espero le sea útil a alguien más.
There is definately a lot to find out about this subject. I like all the points you made
I really like reading through a post that can make men and women think. Also, thank you for allowing me to comment!
There is definately a lot to find out about this subject. I like all the points you made
Great information shared.. really enjoyed reading this post thank you author for sharing this post .. appreciated
This is my first time pay a quick visit at here and i am really happy to read everthing at one place
I really like reading through a post that can make men and women think. Also, thank you for allowing me to comment!
There is definately a lot to find out about this subject. I like all the points you made