# no wildcard certificates yet
certbot certonly --nginx -d domain.tld -d www.domain.tld
certbot renew --nginx
certbot renew --pre-hook "service nginx stop" --post-hook "service nginx start"
certbot certonly --apache -d domain.tld -d www.domain.tld
certbot renew --apache
certbot renew --pre-hook "service apache2 stop" --post-hook "service apache2 start"
Or now that tls-sni-01
is disabled:
certbot --authenticator standalone --installer nginx -d domain.tld --pre-hook "service nginx stop" --post-hook "service nginx start"