Will AutoSSL replace existing AutoSSL certs that are not about to expire?
I love all the improvements to AutoSSL. Since it has changed a bit I wanted to be sure I understand it's current state.
Suppose I have primary domain example.com where DNS resolves correctly... and a parked domain example2.com where DNS does not resolve. So I have 1 VHOST with both domains on it which means 1 cert.
Day 1 - AutoSSL runs and issues a cert for example.com but example2.com is not on it because it fails DV.
Day 2 - exapmle2.com DNS resolves
Day 3 - AutoSSL runs. Does it replace the original cert because it realizes it can get better coverage? Or does it not because it believes that VHOST already has a valid SSL that is not expiring.
Previously, I had been only using Addon domains instead of Parks since they get their own VHOST and can have an independent cert. I was also doing this before being able to exclude a domain from autossl that would cause the whole cert to not be issued for the vhost if any domain on it failed validation. That has been fixed since. So I'm hopeful the answer allows me to go back to using real Parked domains again.
Please sign in to leave a comment.
Comments
0 comments