Switch letsencrypt cert to wildcard to include www

Remove the current cert

sudo certbot delete

pick from list

Update virtual host, comment out SSL portion

Ensure that http virtual host is working - will need this for certbot to work

Check confs

sudo apachectl configtest

Must be error free for certbot to work

sudo systemctl restart apache2

Will also reveal issues in virtual hosts

Wildcard cert to include domain and www

sudo certbot --apache certonly -d 'site.net,www.site.net'

If no errors, update virtual hosts and restore SSL section

Restart apache and test

Test using

http://site.net

https://site.net

http://www.site.net

https://www.site.net

If get "another instance of certbot is already running"

ps-ef | grep certbot

If renew is running, wait a minute or two for it to finish