• If you are still using CentOS 7.9, it's time to convert to Alma 8 with the free centos2alma tool by Plesk or Plesk Migrator. Please let us know your experiences or concerns in this thread:
    CentOS2Alma discussion

Issue Letsencrypt Certs not removed when a domain is removed

Ken Grammer

Ken Grammer

New Pleskian
I removed a domain that was associated with a letsencrypt SSL certificate. The domain was removed, but the letsencrypt SSL files were left in place.

It would be great if Plesk checked for, and removed, LE files associated with deleted/removed domain names.

This brings me to my question. Is there a way to removed these dangling LE files through a plesk panel option or should I (can I) simply delete the letsencrypt folders associated with the removed domain. Are there other hoops I need to jump through to get those leftover LE files cleaned up?
 
I would suggest you try to remove this certificate in command line interface with corresponding 'certificate' Plesk utility:

First of all find name of this certificate with someting like:

# plesk bin certificate -l -domain domain.com

After that remove it with

# plesk bin certificate -r <cert_name>
 
Thanks for the reply, but those commands apparently only work for active domains. Since the domain in question has already been removed, no results are returned.
 
I would suggest you check existence of record for this certificate in 'certificates' table of Plesk database:

# plesk db
mysql> select * from certificates\G
 
OK, the certificate in question was not listed. I've renamed the archive and live cert folders and will run a test to see if that presents any issues.

Bottom line... PLESK needs to be remove LE certificates for us when the domain name is deleted! :D
 
It seems to be a general bug upon domain removal. A similar situation has been observed on our hosts, too. When a domain or subscription are removed, the SSL certificate file and entry is removed, but the symbolic link is not removed from the web server configuration directories (/etc/httpd and subfolder paths). As this situation does not seem to be reproduceable, it is difficult to formulate a bug report on it. But pretty sure that the situation described here is linked to the same problem. At least a verification at the end of a Let's Encrypt removal procedure is missing that things are exactly as expected.
 
You must log in or register to reply here.

Similar threads

J
Resolved WordPress Network setup on Alias -- how to add alternative domains with Lets Encrypt SSL Certs?
Replies
3
Views
350
joell
J
Bitpalast
Forwarded to devs SSLIt configuration files not removed in some cases when a customer and/or domains of that customer are removed
Replies
2
Views
538
Bitpalast
Bitpalast
D
Issue [ PI-729] Plesk Updater uses wrong certificate chain
Replies
14
Views
3K
learning_curve
learning_curve
T
Issue After moving subscription, users receive message "Your subscription was removed", Cannot create new webspace.
Replies
2
Views
1K
thespark
T
I
Question Problems with Email certificate renewal - seems linked to changes in SNI support
Replies
0
Views
2K
iainh
I
Back
Top