I installed a cert on my server using the wildcard manual method. I realize this manual process has to occur every 90 days and this is the only way to renew. I want to remove this and install it the normal way so I can do it automatically using a cron job. I just need a guide on how to remove what I did and start over.
Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. crt.sh | example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.
The acme-dns approach works like this: You configure a dedicated nameserver on the public internet that will only serve acme-dns challenge responses. On initial enrollment of a domain, the acme-dns server will assign you a dedicated subdomain and API credentials for a desired domain. You then delegate your desired domain's "_acme-challenge" TXT record onto a subdomain the acme-dns server assigns you, and configure a certbot client hook (either based on GitHub - joohoi/acme-dns-certbot-joohoi: Certbot client hook for acme-dns or https://github.com/joohoi/acme-dns-client) with the delegated domain and api credentials. Certbot will then automatically renew the domain by coordinating the challenges between the acme-dns server and client. You will never have to update the main DNS records once delegated to acme-dns, and in the event of a system compromise your API credentials are only able to affect acme-challenges – not real DNS records or accounts with vendors. It is the most (only?) secure way to automatically mange DNS records with Certbot.
I started with a Linux Debian Server with the default Cert from Linode, I ran the manual wildcard installation; now I want to take my server back to where it was before I ran the manual install; I want to remove it. I have several client Linodes/websites I've done this on, and I need a way to reverse it without having to build a new server and move their website.
But, really, why was it so important to delete them from your server just to make a new one? Each time you renew that cert you'll get a new set. The symlink in the /live/ folder will point to the latest in /archive/
And, each new successful cert or renew will update the renewal conf file for next time.