Welcome to Centmin Mod Community
Become a Member

SSL Letsencrypt How to remove a website off the acme tool?

Discussion in 'Domains, DNS, Email & SSL Certificates' started by Tythus, Apr 1, 2018.

  1. Tythus

    Tythus Premium Member Premium Member

    61
    9
    8
    Aug 6, 2014
    Ratings:
    +12
    Local Time:
    7:39 AM
    Lets say I want to move back to a paid or alternate SSL cert or no longer wish to support http for whatever reason how would I go about removing a website off the acme tool?
     
  2. Meirami

    Meirami Member

    97
    9
    8
    Dec 21, 2017
    Ratings:
    +31
    Local Time:
    9:39 AM
    Edit
    Ok, this isn't recommended way... Check below.
    /edit

    crontab -e
    Remove acme
    Edit your domain's nginx conf file. Edit cert path to paid one or change to http or what ever you want.

    That's how I would do it.
     
    Last edited: Apr 1, 2018
  3. eva2000

    eva2000 Administrator Staff Member

    35,992
    7,896
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +12,174
    Local Time:
    4:39 PM
    Nginx 1.15.x
    MariaDB 5.5/10.x
    Backup and remove /root/.acme.sh/yourdomain.com directory and /usr/local/nginx/conf/ssl/yourdomain.com directory to respectively prevent acme.sh cronjob auto renewal and clean up /usr/local/nginx/conf/ssl/yourdomain.com references i.e. rename /usr/local/nginx/conf/ssl/yourdomain.com to say /usr/local/nginx/conf/ssl/old-letsencrypt-yourdomain.com. DO NOT remove the cronjob for acme.sh itself. Then just remove letsencrypt ssl cert from nginx vhost and replace with your paid ssl cert using method 1 outlined below.

    There's generally 3 ways of setting up HTTPS SSL certificate for Centmin Mod Nginx HTTP/2 based HTTPS

    Method 1. The traditional way via centmin.sh menu option 2, 22 and selecting yes to self-signed ssl certificates first. Then converting the self-signed ssl certificate to paid or free (Letsencrypt) web browser trusted SSL certificates outlined at How to switch self-signed SSL certificate to paid SSL certificate ? You would still need to follow the same steps outlined at Nginx SPDY SSL Configuration for obtaining and purchasing the paid SSL certificate and most important part is the concatenation of the SSL provider provided filesto create the mentioned /usr/local/nginx/conf/ssl/domaincom/ssl-unified.crt and /usr/local/nginx/conf/ssl/domaincom/ssl-trusted.crtfiles referenced in your Nginx SSL vhost config file.

    You may need to also decide if you want to enable HTTP to HTTPS redirect outlined at How to force redirect from HTTP:// to HTTPS:// ?

    If you didn't answer yes at time of initial nginx vhost creation to self-signed ssl certificates, you can manually setup the self-signed ssl certificate via the vhost generator by checking self-signed ssl box and enter a domain name. This will outline instructions for manually creating and setting up self-signed ssl certificate and nginx vhost settings. Then for web browser trusted ssl certificates you switch follow - How to switch self-signed SSL certificate to paid SSL certificate ?.

    Method 2. Using and testing Centmin Mod 123.09beta01's new addons/acmetool.sh addon which is still in beta testing only for integrating Letsencrypt SSL certificates. And has both auto and manual methods.

    Method 3. Fully manual method for free Letsencrypt SSL certificates.
    Note:
    • For wordpress auto installer, you actually need a read method 2 to enable LETSENCRYPT_DETECT='y' then run centmin.sh menu option 22 which will detect letsencrypt support and display the additional letsencrypt prompts required to issue free letsencrypt ssl certificates for wordpress auto installer
     
    • Informative Informative x 1
..