Creating SSL cert for as well as


During the “ghost setup” step, I set up the ssh certs for my domain by entering the domain as However, I noticed that this does not make a certificate for even though it’s specified in my nginx config.
Thus, I thought maybe I would run “ghost setup” again and put in as my domain instead and create a new ssl cert. This time, it made the valid cert, but now going to gives me a 502 Bad Gateway.

I attempted to use a standalone installation of Certbot for this as well; unfortunately certbot created an infinite loop that required a rollback and was not an optimal solution. I can not find a way to rollback the ssl cert creation in Ghost; being able to do this would likewise be helpful.

in \etc\nginx\sites-enabled.conf\ i currently have 5 nginx configs; default,,,, and Should I delete and

tldr i need to expand my existing certificate to add without changing the domain the blog is running from


That’s OK to get the SSL certificate for www. as well. Of course, let’s hope the devs will add an easier way in future versions.

No need to rollback. It’s good to have the two certificates, for and, even if you then configure redirections.


No, you just need to adjust your Ghost (/var/www/ghost/config.production.json) and Nginx configurations, and restart. See an example with redirections to


ghost setup will only setup (including nginx, ssl, etc) the domain you enter as config. Your idea to use ghost setup a second time was the right path, the exact steps & commands for this are documented here:


Thank you. That article solved my issue. I had no idea that the files were symlinked from /var/ghost/system/files, this definitely caused some confusion when I tried setting up letsencrypt outside of the ghost utility!

closed #7

This topic was automatically closed 14 days after the last reply. New replies are no longer allowed.