I no longer need certs for the following domains:

mikelucente.com
kmbig.com

I’ve removed all references to them within /etc/letsencrypt yet they still show up on the dryrun.

What else must I do??

IMPORTANT NOTES:

• The following errors were reported by the server:

  Domain: mikelucente.com
  Type: unauthorized
  Detail: Invalid response from https://7thrank.com [45.55.33.90]:
  “\n<html lang=“en-US”>\n\n\t<meta
  charset=“UTF-8” />\n<meta http-equiv=“X-UA-Compatible”
  content=“IE=edge”>\n\t<lin”

  Domain: kmbig.com
  Type: unauthorized
  Detail: Invalid response from
  http://kmbig.com/.well-known/acme-challenge/rYWvP3FfOuQPeUgMtOyCtxym3Oo_ywR_0AXwv8OkLsk
  [198.54.117.197]: “\r\n404 Not
  Found\r\n\r\n

  404 Not
  Found

  \r\n

  ---

  openresty</cente”

  To fix these errors, please make sure that your domain name was
  entered correctly and the DNS A/AAAA record(s) for that domain
  contain(s) the right IP address.

• The following errors were reported by the server:

  Domain: mikelucente.com
  Type: unauthorized
  Detail: Invalid response from https://7thrank.com [45.55.33.90]:
  “\n<html lang=“en-US”>\n\n\t<meta
  charset=“UTF-8” />\n<meta http-equiv=“X-UA-Compatible”
  content=“IE=edge”>\n\t<lin”

  To fix these errors, please make sure that your domain name was
  entered correctly and the DNS A/AAAA record(s) for that domain
  contain(s) the right IP address.

• The following errors were reported by the server:

  Domain: www.mikelucente.com
  Type: None
  Detail: DNS problem: NXDOMAIN looking up A for www.mikelucente.com

Sounds like you did this yourself... manually. [usually a bad idea]
There is a remove parameter that can be used.

See: User Guide The Let’s Encrypt project — letsencrypt latest documentation

image700×197 9.98 KB

Certbot gets the list of domains from your current certificates. To remove names, you either have to delete the certificates using certbot delete, or issue new certificates with different sets of names.

Not working:

sudo certbot delete --cert-name mikelucente.com
Saving debug log to /var/log/letsencrypt/letsencrypt.log
No certificate found with name mikelucente.com (expected /etc/letsencrypt/renewal/mikelucente.com.conf).

Please show:
sudo certbot certificates

… had to dropbox it. New user link limit exceeded.

Should fail; as there is no cert by that name (there are certs that contain the name - two different things)

Here is the list of cert name (from your doc):
Certificate name: 7thrank.com VALID: 23 days
Certificate name: home.chessregister.com VALID: 77 days
Certificate name: smilerestored.com INVALID: EXPIRED
Certificate name: www.7thrank.com VALID: 76 days

If you want to renew a cert and only remove one of the names on it, consider using:

You have certificates with multiple domain names, so you have to reissue those certificates with only the names you want. --allow-subset-of-names is a risky but possible way to do this; the intended way is to use the applicable --cert-name and then use -d options to list only the names that should be included in the new certificate.

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.