Duplicate certificate limits - is the private key generated?


#1

Hi, we’ve had a few domains hit the duplicate renewal limit due to a bug in our application. It appears the certificate was generated by checking crt.sh, but as limit means our configuration didn’t complete the process, we did not receive the certificate/private key. Is there a manual way to retrieve the private key? If so, where can it be found?


#2

The ACME client generates the private certificate locally in order to submit a CSR to Let’s Encrypt.

if you don’t have the private key saved, then it’s impossible to retrieve.

If you’re using Certbot, you can look in /etc/letsencrypt/keys to see if one matches, but you’ll have to manually test them against the certificates to find out which, if any, match.


#3

Thanks, that makes sense. Will check via your suggestion


#4

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.