sync live and archive certs of fqdn

tasks/configure_certificates.yml

@@ -76,6 +76,10 @@
     key: "{{ item }}"
   loop: "{{ lookup('file', '/tmp/pubkeys') | split('\n') }}"
 
-- name: Synchronize certificates
+- name: Synchronize live certificates
-  shell: "rsync -ar -e 'ssh -p 7227 -o StrictHostKeyChecking=no' {{ mail_server_fqdn_ip }}:/etc/letsencrypt /etc/"
+  shell: "rsync -ar -e 'ssh -p 7227 -o StrictHostKeyChecking=no' {{ mail_server_fqdn_ip }}:/etc/letsencrypt/live/{{ mail_server_fqdn }} /etc/letsencrypt/live/"
+  when: mail_server_fqdn_ip != node_external_ip
+
+- name: Synchronize archive certificates
+  shell: "rsync -ar -e 'ssh -p 7227 -o StrictHostKeyChecking=no' {{ mail_server_fqdn_ip }}:/etc/letsencrypt/archive/{{ mail_server_fqdn }} /etc/letsencrypt/archive/"
   when: mail_server_fqdn_ip != node_external_ip