andreaswolf
commented
7 years ago Thanks for the PR. I would however rather not merge this, as I think this is an error in your setup: The certificates should, for security reasons, be generated by a user with the least possible privilege (i.e. especially not root, who usually executes Ansible).
On my systems, it works to generate the certificates in a special folder for Let’s encrypt (/etc/ssl/letsencrypt, on Ubuntu). Would that be possible in your setup?
letsencrypt_user does not have permission to generate initial cert, it required password