How to Delete a Let's Encrypt / ACME Certificate from pfSense?
-
Firstly, I'm assuming the following actions for the buttons within the ACME plugin;
- "Renew" = pfSense ACME plugin is talking to Let's Encrypt to do the magic and ultimately generate a certificate
- "Issue" = Place this certificate from pfSense onto pfSense, I'm assuming this is some under the hood stuff with pfSense that isn't particularly clear what is going on to me
So, playing around, I created one certificate called HelloWorld. Then I noticed when trying to apply this certificate to a back end that it just showed up as "HelloWorld" in the dropdown. So I thought to myself... I should probably be more specific and set this as the FQDN to avoid ambiguity.
So I changed the name from "HelloWorld" in ACME to "helloworld.example.com", and regenerated the certificate successfully. Then I noticed when trying to apply this that pfSense/HAProxy now shows two certificates one for "HelloWorld" and one for "helloworld.example.com".
It's messy. pfSense/HAProxy/ACME plugin shouldn't do this. When there is only one Certificate, there shouldn't be presented to the user multiple options when only one should be valid.
Is there any easy way to remove one of the certificates that has been generated? I've not spotted anything on the UI, so I'm assuming not and I'm stuck with this now.
-
System >Certificate Manager >CAs
There you should be able to delete your Cert