Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
S
S
Stanislav2018-02-26 16:27:15
Digital certificates
Stanislav, 2018-02-26 16:27:15

Why does letsencrypt create new certificates in a new directory?

When creating a new certificate, letsencrypt creates a new domain-0001 folder with new certificates, and the old domain folder contains valid certificates and I don’t understand how to update them.
As I understand it, everything is due to the fact that the new certificate does not contain subdomains that I no longer need. The
old certificate was issued to the following domains

domain.ru
www.domain.ru
static.domain.ru
tmp.domain.ru

I'm trying to get a new certificate for the following domains
domain.ru
www.domain.ru
img.domain.ru

As a result, letsencrypt creates a new directory domain.ru-0001, and I just need to simply overwrite the previous one.
I'm trying to overwrite it with this command
certbot certonly --force-renewal -d domain.ru -d www.domain.ru -d img.domain.ru

I tried to delete all unnecessary information related to domain.ru-0001 Deleted the
folder /etc/letsencrypt/live/domain.ru-0001 Deleted the
config /etc/letsencrypt/renewal/domain.ru-0001.conf
Another attempt and everything is repeated, a new one is created folder?
What can be done?
Move certificates from the domain.ru-0001 folder to the domain.ru folder?

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

2 answer(s)
Report
S
Stanislav, 2018-02-26
@ms-dred

In general, with my problem, the solution seems to be to specify the name of the certificate in the request.
Then it says that a new domain will be added, and the old unspecified ones will be deleted.
So this should work!
Now only the limit has been exhausted, and we must wait, writes

An unexpected error occurred:
There were too many requests of a given type :: Error creating new cert :: too many certificates already issued for exact set of domains: ....домены... see https://letsencrypt.org/docs/rate-limits/

Report
K
ky0, 2018-02-26
@ky0

You, apparently, for some reason removed the symlink to the directory with the current certificate, which certbot automatically modifies with each update. In itself, the presence of all these directories with numbers is normal.
Use /etc/letsencrypt/live/domainname/fullchain.pemand /etc/letsencrypt/live/domainname/privkey.pem, in general - they will always look at the current version.

Similar questions
D
Dmitriyshremzer2021-04-12 14:14:08
Squares instead of Cyrillic, how to fix it? 4Reply
E
evgenin2020-10-26 12:33:19
What is the best certificate issuing service? 2Reply
P
Pavel2016-08-14 04:38:41
Do I need a dedicated IP for a NOT signed SSL certificate? 2Reply
R
Romi2022-03-11 18:14:26
How to set up HTTPS protocol on a domain from OpenNIC (eg: .geek or .libre)? 1Reply
M
mrbalearic2019-01-24 05:53:08
How to install a second SSL certificate? 2Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question