Symptoms
The following notifications are received by Plesk Administrator:
The following domains have been secured without some of their Subject Alternative Names:
<none>
Could not renew Let's Encrypt certificates for example (login johndoe). Please log in to Plesk and renew the certificates listed below manually.
Renewal of the following Let's Encrypt certificates has failed:
<none>
The following Let's Encrypt certificates have been renewed without some of their Subject Alternative Names:
<none>
Cause
Expected behavior, when the following conditions are met:
-
The domain example.com has non-Let's Encrypt Certificate publicly available. For example, it has been issued by Cloudflare on the Coudflare side.
The domain itself is hosted on another server but there is expired Let's Encrypt certificate assigned to it in Plesk in Domains > example.com > Hosting Settings > Certificate.
-
Keep websites secured with free SSL/TLS certificates option is configured in Subscriptions > example.com > Customize > Additional Services.
In this case a certificate re-appears after running the task keep-secured.php in Tools & Settings > Scheduled Tasks.
Resolution
-
Go to Subscriptions > example.com > Customize > Additional Services
-
Set the Keep websites secured option to None
-
Go to Domains > example.com > Hosting & DNS tab > Hosting Settings > in the Certificate field switch the certificate to none:
-
Remove certificate in Domains > example.com > SSL/TLS Certificates