Type": "urn:acme:error:rateLimited

Hello,

I use witxl.nl for a whitelabel domain name but also for wildcards from customers. Witxl.nl is also used as an SSL domain name for DirectAdmin. Now I get the message that witxl.nl has generated too many certificates. Can this also be increased? Or, how can I solve this? (https://server39.witxl.nl:2222)

{
“type”: “urn:acme:error:rateLimited”,
“detail”: “Error creating new cert :: too many certificates already issued for exact set of domains: server39.witxl.nl”,
“status”: 429
}

Rate limits cannot be increased: https://letsencrypt.org/docs/rate-limits/

You have issued a new certificate for that exact domain once per day for nearly every day in December.

This is a sign that your Let’s Encrypt client or integration is malfunctioning.

You will want to check why this is happening, as the only way to avoid the problem is to not issue duplicate certificates so frequently.

2 Likes

You can apply to get higher rate limits, but the duplicate certificate rate limit can normally easily be avoided (e.g. by reusing one certificate and replacing it less frequently).

I don’t know if Let’s Encrypt will increase that rate limit, at all or without a really good justification.

1 Like

Hey,

Could you perhaps indicate which domain name this generates? This is a shared hosting and I can not see anything in the logs on https://crt.sh/?q=server39.witxl.nl

Met vriendelijke groet,

Hans Renses
Wned.nl

https://shop.eset.nl/1-eset-nod32-antivirus?rid=162492

That is the domain of the certificate - server39.witxl.nl. There are no other names on those duplicate certificates.

If you click on the “crt.sh ID” you can see the full certificate details.

I’m not sure when you looked, but https://crt.sh/?q=server39.witxl.nl shows certificates for the exact same set of domains (really just one domain) issued on the 14th, 13th, 11th, 10th, 9th, 6th, 5th, 4th, 3rd, 2nd, etc.

Do you know what keeps issuing these duplicate certificates? This is not a proper configuration.

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.