> Am 13.07.2020 um 18:10 schrieb Tom Browder <tom.browder@xxxxxxxxx>: > > I'm running Apache 2.4.43 and just added my first managed virtual host > with mod_md and all worked fine. Now I want to move all my other > virtual host to the same process but I have a few questions first: > > 1. For an auto renewal for the current managed domain, will I have to > manually restart each time? Clarification: only a reload (graceful) is necessary, not stop+start. Since the renewal is done usually a month in advance, you have plenty of time. My debian systemd controlled apache is restarted gracefully each day anyway, for example. > 2. After I follow the recommendations for the move of the other > domains, will they require an initial manual restart? For a new domain mod_md initially installs a "fallback" certificate that is not trusted by browsers, but lets the server start with your configuration. It usually takes a minute to obtain the Lets Encrypt cert. Do a graceful reload afterwards and your site should be up. > > 3. According to my reading of the docs, using OCSP via mod_md looks to > be the best practice. Am I correct? It is designed to be more reliable and also offers monitoring. But it is a new thing and bugs may be found. Cheers, Stefan > > Thank you. > > Best regards, > > -Tom > > --------------------------------------------------------------------- > To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx > For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx > --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx
|