it will be my first time that I will deal with SSL.
I already have the production site live on Digital Ocean with Trellis, bedrock and Sage, I went live without the ssl enabled.
I have this setting:
ssl: enabled: false provider: letsencrypt
Now i would like to update the live site from non-SSL to SSL
Reading the documentation, it seems that the only things that I have to do are:
- in the group_vars/production/wordpress_sites update the value to
- have a valid and working DNS records (the website is already live)
- reprovisioning the server with
ansible-playbook server.yml -e env=<environment> --tags letsencrypt
are these steps correct?
my doubts are:
if for some reason the reprovisioning will have some errors, it will stop the provision of the server (and keep the site live) or it is possible that the website can go down?
the records @ and www type A are ok dns settings to active the ssl or I need to create a specific record for this scope?
what are the best practices to avoid downtime with a live website?
have I manually update some settings in the wp admin?
Thanks in advance!