Lets-encrypt on muti-tenant system with sub-domains

Good day Sir /Madam

I have successfully deployed a V13.20.1 multi tenant system where I have one domain-
mydomain.com
and assigned subdomains to it–
order.mydomain.com

I followed the above example -
bench new-site order1.site
bench --site order1.site install-app erpnext
bench setup add-domain --site order1.site order1.mydomain.com

bench setup nginx
bench setup reload-nginx

My aim is 3 sites on one server=
order1.mydomain.com
order2.mydomain.com
order3.mydomain.com

I am unsure how to proceed with lets-encrypt-
I have done lets-encrypt on a single server but am unsure now

Do I apply the lets-encrypt procedure to -
mydomain.com
or
order1.mydomain.com
order2.mydomain.com
order3.mydomain.com

Hope you all have a wonderfull day

We issue SSL for each site.

You can issue a per site lets encrypt so SSL certificates must be issued to each and every subdomain: order1.mydomain.comorderN.mydomain.com

You can also issue a wildcard SSL certificates which allows all subdomains to be recognized using only one certificate for *.mydomain.com.

To have a wildcard SSL certificate, you must have access to your DNS nameserver because lets-encrypt will give you a code you must place in that DNS nameserver as a cname entry. When lets-encrypt sees that you were able to place that entry to the nameserver, it is confident that you own the domain name, and will issue you a wildcard certificate for the entire domain, mydomain.

1 Like

Good day

Thank you very much @TurkerTunali and @Joseph_Marie_Alba1 for your input and
explanation and for clarifying the wildcard option. Yes i do have access to my DNS
nameserver so that is an option.

Let me get to work on this.

Hope you all have a great day.