- Plesk Onyx 17.0 for Windows
- Plesk Onyx 17.5 for Windows
Domain certificate cannot be renewed (nor manually, nor automatically) when it is used to secure Plesk and/or Plesk mail server.
Let's Encrypt rate limits is exhausted for the domain;
The following error appears in
CONFIG_TEXT: ERR [extension/letsencrypt] Cannot renew certificate on domain example.com with error: Remove certificate failure: One of the certificates you are going to delete is used for securing Plesk.
This is a Let's Encrypt extension bug with ID #EXTLETSENC-95 which is fixed in Plesk Onyx 17.8.
It's not recommended to use the same certificate to secure domain and Plesk and/or Plesk mail server.
The best practice is to use separate certificates to secure Plesk with the mail server and any of the domains.
Apply the solution from the following article in order to use separate certificates: Failed to renew Lets Encrypt certificate: One of the certificates you are going to delete is used for securing Plesk
Note: Plesk Onyx 17.8 currently in testing state and should not be used in a production environment.