Hello everybody, thanks for all your work and the (more or less, I should look more often) new version 3.2! I just managed to break my installation using the new option to obtain a LE certificate for the panel automatically. But never mind, I could fix it myself in the end. Now it works but triggered my question: Is it possible to specify additional DNS names which should be included in the certificate obtained for the panel? For legacy reasons my mail server is spoken to under different names - which of cause fails with the now not anymore included SAN names in the certificate. In the past I used a "dummy" website with aliases and scripted the distribution of the obtained LE certificate to Postfix and Dovecot. Thanks in advance!
No, there is currently no means to configure what names are included in the server certificate, it requests only the server's hostname and falls back to creating a self signed certificate of there is a problem.
This is not possible, but you can set this up using https://www.howtoforge.com/securing...server-with-a-valid-lets-encrypt-certificate/
Thanks to you both for your quick replies! With a quite low priority for a feature request it would be nice to add the possibility to specify additional hostnames to the panel-certificate. Another question which popped up during this: is it possible to specify an e-mail-address for Let's Encrypt to send notifications to within ISPConfig? This would be a per certificate setting and additional for the panel-certificate.
This is possible aswell, with https://www.howtoforge.com/tutorial/securing-ispconfig-3-with-a-free-lets-encrypt-ssl-certificate/ This is currently not possible.
I believe it is possible to add the additional hostnames FQDN that have been requested here and in various other threads and posts. To me it is not that difficult and any of the developers should be able to attempt such modification to ISPConfig 3.2 installer simply to include additional hostnames to a newly requested or existing LE SSL certs. I think the trick is in about the same as adding sub domain to the main domain LE SSL certs and the code for that is already there in the website LE lib, to be extracted and extended to ISPConfig 3.2 installer. The only problem as always is the developers time as they are all volunteers in this free open source software, so, any new interested contributors are welcome. I can try to assist with no promise of full commitment though I am normally fully committed.
I will extend discussion about this in the Developers' Forum. https://www.howtoforge.com/communit...ns-to-exisiting-ispconfig-le-ssl-certs.86086/
