How to prevent renewal for certain domains

jbc · March 26, 2019, 4:56pm

We are a small website/CMS platform. A single server running certbot hosts approx. 1000 certs for client websites which are not on the same server.

Cert renewals are automated via certbot.timer.

I would like to make sure that we are not attempting to renew certs for clients who have cancelled.

I do not want to remove or revoke the certs in case the cancellation is temporary.

Can I prevent renewal attempts for certain domains by removing domain.conf files from /etc/letsencrypt/renewal?

Or, what is the recommended way to prevent renewal attempts? Thanks!

JuergenAuer · March 26, 2019, 6:46pm

as I know: That should work.

Make a backup, then remove the config file. Perhaps remove symlinks you find in

/etc/letsencrypt/live

mnordhoff · March 27, 2019, 12:10am

If you’re running a recent enough version of Certbot, you can set autorenew = False in the [renewalparams] section of the file.

system · April 26, 2019, 12:10am

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Disable auto renew for a specific domain Help	3	2529	June 13, 2019
How to prevent certbot from about-renewing? Help	20	196	November 2, 2024
Stop renewal reminder for a specific cert? Help	7	289	July 27, 2024
Reducing the auto-renewal interval Help	7	84	December 19, 2024
Multiple old .conf files in /renewal Help	5	1350	November 17, 2018