I am having difficulties getting a Letsencrypt certificate for a site I deleted and recreated under a different ISPConfig client. I realize now I probably should just had change the client for tge site but that is heinsight now. I noticed if I delete a site that had a LE cert, the LE cert files persist. Is is the expected/by-design behaviour? Besides the LE files not being deleted, I can't generate a new LE cert for the same site domain under the new client id. The LE error log says DXDOMAIN could not find an A record for the domain but of course the A record is there as I did not delete it from DNS: nslookup returns the A record fine. Any pointers?
Yes, taht's by design. ISPConfig can not know which other services might use the SSL cert that would break when ISPConfig removes it.
Ok, makes sense. Since in this case no other service uses them, can or should I remove them to see if that fixes the issue? Any other suggestion?
It is unlikely that this is the cause of your issue and that it will fix it, but you can remove it manually if you want. When LE complains that it can't find an A-Record, then the issue is related to DNS setup. or you added subdomains to the site which do not exist as A-Records. e.g. when you chose auto-subdomain www but in fact, the www A-Record is missing in DNS.
Thanks Till. I feel stupid right now. I just realized I had a tipo in the domain name: it is all working now after correcting the typo. At least I learned the LE should persist
