> Am 13.07.2020 um 18:10 schrieb Tom Browder <tom.brow...@gmail.com>:
>
> I'm running Apache 2.4.43 and just added my first managed virtual host
> with mod_md and all worked fine. Now I want to move all my other
> virtual host to the same process but I have a few questions first:
>
> 1. For an auto renewal for the current managed domain, will I have to
> manually restart each time?
Clarification: only a reload (graceful) is necessary, not stop+start.
Since the renewal is done usually a month in advance, you have plenty of time.
My debian systemd controlled apache is restarted gracefully each day anyway,
for example.
> 2. After I follow the recommendations for the move of the other
> domains, will they require an initial manual restart?
For a new domain mod_md initially installs a "fallback" certificate that is not
trusted by browsers, but lets the server start with your configuration. It
usually takes a minute to obtain the Lets Encrypt cert. Do a graceful reload
afterwards and your site should be up.
>
> 3. According to my reading of the docs, using OCSP via mod_md looks to
> be the best practice. Am I correct?
It is designed to be more reliable and also offers monitoring. But it is a new
thing and bugs may be found.
Cheers, Stefan
>
> Thank you.
>
> Best regards,
>
> -Tom
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org
> For additional commands, e-mail: users-h...@httpd.apache.org
>
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org
For additional commands, e-mail: users-h...@httpd.apache.org
