How to get Letsencrypt SSL certificate for subdomains on Multi Wordpress site?

[alwaysbusy]

Hi

i am moving at moment some Multi Wordpress sites from Cpanel to DirectAdmin.

My domain is:
domain.com

Subdomains are via wildcard:
sub1.domain.com
sub2.domain.com
sub3.domain.com

In Cpanel i have only been creating subdomains and pointing them to the public_html folder and so they had been getting automatically a SSL certificate.

When i create in DirectAdmin a wildcard in the A records with * , create subdomains, change the path of them to the publich_html folder, then i can request a ssl certificate but then on that subdomains its not showing up my blog anymore and i get an error.

Does someone know, how i can solve this?

Any help is appreciated.

Thank you!

 

[Richard G]

When i create in DirectAdmin a wildcard in the A records with * , create subdomains, change the path of them to the publich_html folder, then i can request a ssl certificate but then on that subdomains its not showing up my blog anymore and i get an error.

Why should you create an A record with a * in DNS? That's not used normally.

Doesn't it work if you just create a wildcard certificate? I've created a wildcard and I don't have multi wordpress but do have ssl on my subdomains.

Edit: with wildcard I mean the choice for wildcard SSL in the menu where you can create Letsencrypt certificates.
However I would wait until they are all propagated through DNS and then create a new wildcard SSL certificate for that domain.

 

[alwaysbusy]

The * in the DNS i need for the Multi Wordpress site for the subdomains more or less.

When i only create a wildcard certificate, i get mostly an error with letsencrypt.

 

[Richard G]

The * in the DNS i need for the Multi Wordpress site for the subdomains more or less.

I have no clue on why this should be necessary because every subdomain creates it's own A record in Directadmin.

When i only create a wildcard certificate, i get mostly an error with letsencrypt.

Are you using external nameservers maybe? If yes, then indeed you have to select all the subdomains used manually.

I think the problem is related with that * in DNS.

 

[alwaysbusy]

I have my own DNS.

Wordpress is not creating a visible subdomain, its only creating a subdomain in the database.

I make at moment a demo installation to try it out.

Thanks for your help!

 

[Richard G]

Wordpress is not creating a visible subdomain, its only creating a subdomain in the database.

Ah oke, that might be causing the issue that Letsencrypt can't find the A records for subdomains. You can create them manually or via the DA panel.
Then it should work.

As for the help, you're welcome, hope you succeed on the test installation.

 

[alwaysbusy]

I tried it now in the test installation with the wildcard letsencrypt and its functioning.
Hope it makes then later no problems when it comes to renew the wildcard ssl.

Will let my testserver run a few days and then i will switch from my other servers from cpanel do directadmin... will be a lot of fun with over 300 domains ;-)

Greets

 

[Richard G]

300 domains? Oh wow... in that case... be aware of the rate limits of ssl requesting.

Rate Limits

Let’s Encrypt provides rate limits to ensure fair usage by as many people as possible. We believe these rate limits are high enough to work for most people by default. We’ve also designed them so that renewing a certificate almost never hits a rate limit, and so that large organizations can...

letsencrypt.org

 

[alwaysbusy]

Thanks, i am looking already in this. This is the only thing what makes me worried at moment, because in Cpanel this works stressless. There i could also request the Cpanel SSL on my dedicated server 100 times on a day without any problem....

 

[alwaysbusy]

Does the rate limit from letsencrypt hit me also when every domain on my server has its own dedicated ip?

 

[Zhenyapan]

read: https://letsencrypt.org/docs/rate-limits/
you will never reach the limit with usual shared-hosting needs, we have few reseller hosting servers with 1000-1200 domains and all ok.

 

[alwaysbusy]

Yes, i had been reading it. Little bit difficult to understand, but with my first tests it seemed ok.

Thanks for your help!

 

[Richard G]

It means cPanel also can't do more requests, because it's not a DA or cPanel limit but a rate limit from Letsencrypt itself. I presume cPanel might have build some cron to not request them all at the same time to not overflow the rate limit.

It's indeed a little bit difficult to understand, takes a couple of times reading, also for me as I'm not native English.

 

[alwaysbusy]

Yes thats right. English is also not my native language....

But at least on my test server i have now installed multi wordpress with Letsencrypt Wildcard. Its functioning now. Will test further for some days, then i will start to build up my new server and move from Cpanel to DirectAdmin finally.

Greets