Let’s Encrypt, how to delete a certificate

Wanabo

Verified User
Joined
Jan 19, 2013
Messages
339
Today I received a notification:
Error during automated certificate renewal for example.com
Getting challenge for example.com from acme-server...
Waiting for domain verification...
Challenge is invalid. Details: DNS problem: NXDOMAIN looking up A for example.com. Exiting...

This is correct because I let the domain expire.

But to prevent future error notifications I revoked the certificate.
./letsencrypt.sh revoke example.com 4096
Certificate has been successfully revoked.

Does the revoke command prevent DA from renewing (and thus producing errors)?
I raise this question because in "/usr/local/directadmin/data/users/someuser/domains" the domain example.com still has the cert, key and san file.

I tried,
./letsencrypt.sh delete example.com 4096
Getting challenge for example.com from acme-server...
Waiting for domain verification...
Challenge is invalid. Details: DNS problem: NXDOMAIN looking up A for example.com. Exiting...

How to remove the cert, key and san file other than manually deleting the files? Removing the domain from DA is not an option. I still have example.com as a domain on my server although expired. But I want to keep the installation because of future upgrade testing on that software.
 
Hello,

Looking through the code of /usr/local/directadmin/scripts/letsencrypt.sh I haven't found a function that removes existing key, cert, san files. So that's up to to remove them manually.

And the thread has been moved in order to be considered as a feature request.
 
Thanks both for your reply. Will have to wait for 1.502 then.
 
Hi

I receive also this alert from letsentcrypt

How to remove it ?
=> the user and domain is deleted from the server.

Thanks
 
I don't want to disable auto-renewal, only renewal for one domain.


The button will delete these files if they exist: /usr/local/directadmin/data/users/username/domains/domain.com.san_config /usr/local/directadmin/data/users/username/domains/domain.com.cert.creation_time /usr/local/directadmin/data/users/username/domains/domain.com.csr

These files don't exist anymore, because the user is deleted.
 
Back
Top