diff --git a/roles/ci_resultsdb/templates/cert.conf b/roles/ci_resultsdb/templates/cert.conf
index 6931b625dc..1e5e4e8572 100644
--- a/roles/ci_resultsdb/templates/cert.conf
+++ b/roles/ci_resultsdb/templates/cert.conf
@@ -1,5 +1,19 @@
ServerName resultsdb.ci.centos.org
- ProxyPass "/.well-known/acme-challenge" "http://certgetter01/.well-known/acme-challenge"
+ RewriteEngine on
+ RewriteRule ^/\.well-known/(.*) /srv/web/acme-challenge/.well-known/$1 [L]
+
+
+
+ ServerName resultsdb.ci.centos.org
+
+ SSLEngine on
+ SSLCertificateFile /etc/letsencrypt/live/resultsdb.ci.centos.org/cert.pem
+ SSLCertificateKeyFile /etc/letsencrypt/live/resultsdb.ci.centos.org/privkey.pem
+ SSLCertificateChainFile /etc/letsencrypt/live/resultsdb.ci.centos.org/fullchain.pem
+ SSLHonorCipherOrder On
+ SSLCipherSuite RC4-SHA:AES128-SHA:ALL:!ADH:!EXP:!LOW:!MD5:!SSLV2:!NULL
+ SSLProtocol ALL -SSLv2
+