Too many certificates already issued for exact set of domains


#1

When requesting certificate, the following message shows due to incorrect operation:

Requesting Certificate
Unexpected error
ACME Server Returned:
{
“type”: “urn:acme:error:rateLimited”,
“detail”: “Error creating new cert :: too many certificates already issued for exact set of domains: sa.bhz.com.cn: see https://letsencrypt.org/docs/rate-limits/”,
“status”: 429
}

My question is:
For this domain sa.bhz.com.cn, when can I apply for a new certificate again?
Is there any way I can delete the existing certificate?

Thanks a lot.


#2

In 7 days.

If you want, you can add a second subdomain to the certificate to circumvent the rate limit. But it’s not a sustainable workaround.


#3

Hi @Snap

you have already created 5 certificates ( https://transparencyreport.google.com/https/certificates?cert_search_auth=&cert_search_cert=p:c2EuYmh6LmNvbS5jbjpmYWxzZTpmYWxzZTo6RUFFPQ&cert_search=include_expired:false;include_subdomains:false;domain:sa.bhz.com.cn&lu=cert_search_cert lists 5 pre- and 5 leaf certificates).

What’s the problem to use one of these certificates the next 60 - 85 days, then create a new?

Deleting or revoking doesn’t reset the rate limit.


#4

When generating these certificates, incorrect username and password were entered, thus these certificates had not been successfully created. Thanks.


#5

As far as Let’s Encrypt goes, they were successfully created.

What were the usernames and passwords for?

Are you sure your software didn’t save anything? Not even the private keys?


Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. https://crt.sh/?q=example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.

My domain is:

I ran this command:

It produced this output:

My web server is (include version):

The operating system my web server runs on is (include version):

My hosting provider, if applicable, is:

I can login to a root shell on my machine (yes or no, or I don’t know):

I’m using a control panel to manage my site (no, or provide the name and version of the control panel):


#6

I uploaded a screenshot to show where LetsEncrypt asked me to enter username and password and also the information when I entered the wrong password. Please help check what the username and password is for and if there is anything saved.


Thanks a lot.


#7

That appears to be creating a scheduled task - which would run with the credentials provided.


#8

Your first screenshot shows, that the certificates are created and saved.

But I’m wondering that they are saved in “My”, not in “Webhosting”.

To create a task, you don’t use the Sql Server database sa - account. You must use a windows administrator account. sa is not a windows account.


closed #9

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.