Skip to main content

Generate Multi Domain SSL Certificate by useing cert bot tool from Let's Encrypt.

 We are using cert bot tool to generate / create multi domain certificate from Let's Encrypt CA.

we are using following command 




create CSR config file to generate CSR:

Example of csr file is:

default_bits            = 2048  # RSA key size
encrypt_key             = no  # Protect private key
default_md              = sha256  # MD to use
utf8                    = yes  # Input is UTF-8
string_mask             = utf8only  # Emit UTF-8 strings
prompt                  = no  # Prompt for DN
distinguished_name      = server_dn  # DN template
req_extensions          = server_reqext  # Desired extensions

[ server_dn ]
countryName             = CountryName # ISO 3166
stateOrProvinceName     = StateName
localityName            = CityName
organizationName        = OrgName
organizationalUnitName  = UnitName
commonName              = domainname.tld  # Should match a SAN under alt_names

[ server_reqext ]
basicConstraints        = CA:FALSE
keyUsage                = critical,digitalSignature,keyEncipherment
extendedKeyUsage        = serverAuth
subjectKeyIdentifier    = hash
subjectAltName          = @alt_names

[alt_names]
DNS.1            = domainname.tld  #Example
DNS.2            = subdomain1.domainname.tld  #Example
DNS.3            = subdomain2.domainname.tld  #Example


openssl req -new -nodes -sha256 -out newcsr.csr -config cert.cfg -keyout private.key


certbot certonly --csr newcsr.csr --manual --preferred-challenges dns -d "domainname.tld" -d "subdomain1.domainname.tld" -d "subdomain2.domainname.tld" 

 

now your file is generated use it and place it properly.

Comments

davidbrooks said…
To generate a multi-domain SSL certificate using Certbot from Let's Encrypt, run the command: lifetime web hosting and domain certbot --apache -d example.com -d www.example.com -d example.net (replace domain names accordingly). This will configure the SSL for multiple domains on your server.
May 10, 2025 at 2:32 AM
mick jonu said…
Me topé con https://calculadoradedias.com/ al buscar una herramienta rápida para contar días y terminé usándolo seguido porque me ayuda a planificar tanto proyectos de trabajo como actividades familiares.
August 29, 2025 at 1:03 PM
Post a Comment

Popular posts from this blog

How to Clear Putty Screen while working with Linux Server?

 Method to clear putty screen while working with Linux Server. It will clear screen buffer and provide true experience of clear screen ( console ).  Have you ever worked remotely with Linux system? it is common to work remotely on Linux system. Putty is popular remote login tool in system admin community. It's freely available open source software and it works on Linux as well as Windows platform. It's widely adopted tool for remote login. Figure: Putty Icon - Popular Remote Login Software. Now imagine you are connected remotely with a Linux system and you are troubleshooting some problem. You are typing command on putty console  and running it and after some time all screen field with lot of text. Screen become messy with full of text  and create confusion while troubleshooting Linux system. After then you type clear command on console and all text cleared as you execute clear command but as soon as you touch scroll bar or up down arrow key, text returned on console...
Post a Comment
Read more

How to Check all user logged in Linux server?

We are learning how to get all logged in user name in a Linux server you need administrative privileges to execute commands cover here.    There are many ways to list logged in user on a Linux machine. Here I am covering my three favourite  method for this purpose. All this command run with any fedora based system like Red Head Linux , Centos, Rocky Linux, Amla linux etc. 1. lastlog : you can use list command to know all login user. this command uses file available in /var/log/lastlog. This command read data from the mentioned file and present in a human readable from     You can use grep command to filter output and show only currently logged in user by following command. lastlog | grep -v 'Never' In this example we use grep -v switch to exclude all line containing Never. This way we find all currently logged in user. 2. W command : This is more preferable way to get all logged in user, it uses file mentioned on lastlog command and file situated on /proc...
1 comment
Read more