How granular are InCommon credentials

gary.bennett · June 18, 2025, 4:49pm

Is it possible to have one set of ACME credentials that can only be used to renew existing certificates (not request a new one)? We would like to put our credentials in the Certbot cli.ini file, but we have some admins w/root access for whom we do not want to give access to request new certs in InCommon.

So, one set of credentials we enter on the CLI to request the first cert; another that we store in the cli.ini file for future renewals by the system.

TIA.

gary bennett

danb35 · June 18, 2025, 5:20pm

Let's Encrypt doesn't use "credentials" at all, so I'd say no. But if you're asking about some other certificate authority, I don't think we could speak to that.

gary.bennett · June 18, 2025, 6:14pm

Yes, I understand. Was interested in InCommon credentials. More appropriate to ask the question, there. Thanks.

Topic		Replies	Views
Multi-credential issues Help	7	1120	August 2, 2021
New certificate provider, updating existing certificates? Help	11	122	March 29, 2025
Changing EAB Key ID and HMAC Key Help	22	446	November 9, 2024
Is Let's Encrypt okay with our requesting new certs instead of renewals? Server	5	1161	March 30, 2018
How Certbot handles multiple server, eab-kid and eab-hmac-key in renewalparams? Help	10	2058	October 16, 2023

How granular are InCommon credentials

Related topics