Let's Encrypt multiple domains

cclass · August 8, 2016, 12:07pm

I have two domains (e.g. first.example.com and second.example.com setup under site_hosts but the SSL certificate only appears to be adding one of the domains.

I have re-provisioned the server multiple times as well as followed the instructions here

Visiting second.example.com shows an untrusted SSL. Upon inspection, the SSL only lists first.example.com instead of both domains.

I don’t receive any errors when provisioning and I see both domains in the letsencrypt tasks. Initially the server was provisioned with only one of the domains, are there any additional steps needed when adding another domain under site_hosts?

Thanks

cclass · August 8, 2016, 12:17pm

I also followed the instructions here with no luck, when attempting to re-provision, it fails at letsencrypt : Generate the initial certificate with:

Provided agreement URL [https://letsencrypt.org/documents/LE-SA-v1.0.1-July-27-2015.pdf] does not match current agreement URL [https://letsencrypt.org/documents/LE-SA-v1.1.1-August-1-2016.pdf]

cclass · August 8, 2016, 12:21pm

Okay i’ve sorted it thanks to this PR https://github.com/roots/trellis/pull/624

Simplified:

If you get the Could not access challenge file failure: Enabling Letsencrypt fails
Delete the certificate and regenerate Let's Encrypt issue when adding new domain to multisite (multisite or not).
If the above fails due to an agreement error, update per https://github.com/roots/trellis/pull/624 and re-provision.