• If you are still using CentOS 7.9, it's time to convert to Alma 8 with the free centos2alma tool by Plesk or Plesk Migrator. Please let us know your experiences or concerns in this thread:
    CentOS2Alma discussion

Forwarded to devs Unable to reissue certificates for domain aliases only

K

Kaspar

API expert
Plesk Guru
Username:

TITLE

Unable to reissue certificates for domain aliases only

PRODUCT, VERSION, OPERATING SYSTEM, ARCHITECTURE

Plesk 18.0.43 mu#1

PROBLEM DESCRIPTION

Previously it was possible to issue (and reissue) SSL certificates for just the domain aliases, without the main domain. (A feature introduced in SSL it 1.8.10)

However currently this isn't possible. When the only the domain aliases checkboxes are checked the "Get It Free" remains disabled. Making it impossible to reissue certificates. See screenshot bellow:

Wh5YZ54.png


STEPS TO REPRODUCE

1) Create domain in Plesk
2) Add one or more domain aliases to main domain
3) Try to add/issue certificates for domain aliases (by unchecking all options for main domain)

ACTUAL RESULT

"Get It Free" button is disabled, making in impossible to (re)issue certificates for domain aliases only

EXPECTED RESULT

Being able to (re)issue certificates for domain aliases only without main domain

ANY ADDITIONAL INFORMATION

(DID NOT ANSWER QUESTION)

YOUR EXPECTATIONS FROM PLESK SERVICE TEAM

Confirm bug
 
From developers:

It is expected. Since SSL It! version 1.10.3, it is no longer possible to issue a certificate that secures only the domain's aliases but not the main domain. This change was done because the main domain always should be secured. It is possible to reissue certificates for aliases + main domain.
 
You're right. I didn't notice this change, as the change log for SSL It! 1.10.3 hasn't ben published (yet) on Change Log for Plesk Obsidian

Shame to hear that it's no longer possible to only secure domain aliases. This causes a bit of an issue in some use cases. For instance when a subscription with domain aliases in Plesk is used only for email and the DNS for the website of the domain points externally (for services like WIX or Squarespace). In those cases it is useful to be able to only secure the domain aliases (and forward those to the main domain).
 
Last edited:
A workaround would be nice. Any ideas how to create certificates for aliases only, but without the main domain and without warnings about failed certificate requests?
 
You must log in or register to reply here.

Similar threads

J
Issue Error when renewing SSL certificate
Replies
1
Views
502
Peter Debik
P
D
Issue can only create webmail certificates
Replies
1
Views
370
deepnpisgah
D
P
Forwarded to devs SSL It! - inconsistent Let’s Encrypt branding
Replies
2
Views
1K
AYamshanov
AYamshanov
M
Forwarded to devs Mail certificate is no longer assigned after it gets renewed by Let's Encrypt
Replies
11
Views
4K
Peter Debik
P
T
Potential bug - Inactive domains, Ssl It extension and Nginx SSL stapling warning
Replies
2
Views
2K
trialotto
T
Back
Top