• Please be aware: Kaspersky Anti-Virus has been deprecated
    With the upgrade to Plesk Obsidian 18.0.64, "Kaspersky Anti-Virus for Servers" will be automatically removed from the servers it is installed on. We recommend that you migrate to Sophos Anti-Virus for Servers.
  • The Horde webmail has been deprecated. Its complete removal is scheduled for April 2025. For details and recommended actions, see the Feature and Deprecation Plan.
  • We’re working on enhancing the Monitoring feature in Plesk, and we could really use your expertise! If you’re open to sharing your experiences with server and website monitoring or providing feedback, we’d love to have a one-hour online meeting with you.

Issue Letsencrypt Certs not removed when a domain is removed

Ken Grammer

Ken Grammer

New Pleskian
I removed a domain that was associated with a letsencrypt SSL certificate. The domain was removed, but the letsencrypt SSL files were left in place.

It would be great if Plesk checked for, and removed, LE files associated with deleted/removed domain names.

This brings me to my question. Is there a way to removed these dangling LE files through a plesk panel option or should I (can I) simply delete the letsencrypt folders associated with the removed domain. Are there other hoops I need to jump through to get those leftover LE files cleaned up?
 
I would suggest you try to remove this certificate in command line interface with corresponding 'certificate' Plesk utility:

First of all find name of this certificate with someting like:

# plesk bin certificate -l -domain domain.com

After that remove it with

# plesk bin certificate -r <cert_name>
 
Thanks for the reply, but those commands apparently only work for active domains. Since the domain in question has already been removed, no results are returned.
 
I would suggest you check existence of record for this certificate in 'certificates' table of Plesk database:

# plesk db
mysql> select * from certificates\G
 
OK, the certificate in question was not listed. I've renamed the archive and live cert folders and will run a test to see if that presents any issues.

Bottom line... PLESK needs to be remove LE certificates for us when the domain name is deleted! :D
 
It seems to be a general bug upon domain removal. A similar situation has been observed on our hosts, too. When a domain or subscription are removed, the SSL certificate file and entry is removed, but the symbolic link is not removed from the web server configuration directories (/etc/httpd and subfolder paths). As this situation does not seem to be reproduceable, it is difficult to formulate a bug report on it. But pretty sure that the situation described here is linked to the same problem. At least a verification at the end of a Let's Encrypt removal procedure is missing that things are exactly as expected.
 
You must log in or register to reply here.

Similar threads

Brian-Dmac
Issue SSL error when main domain has been changed
Replies
2
Views
321
Brian-Dmac
Brian-Dmac
M
Issue No Domain Reachable when nginx enabled
Replies
11
Views
6K
mvstns
M
J
Resolved WordPress Network setup on Alias -- how to add alternative domains with Lets Encrypt SSL Certs?
Replies
3
Views
2K
joell
J
Bitpalast
Forwarded to devs SSLIt configuration files not removed in some cases when a customer and/or domains of that customer are removed
Replies
2
Views
732
Bitpalast
Bitpalast
S
Resolved Dovecot Broken After Latest Update
Replies
4
Views
1K
scpcomp
S
Back
Top