Certbot

List installed

sudo certbot certificates

Remove certificates for a given domain

sudo certbot delete --cert-name domain.com

Install Wildcard certs

certbot certonly --manual --preferred-challenges=dns -d "domain.com" -d "*.domain.com" --email [email protected]

Troubleshooting

Issue: Unable to recover files from /var/lib/letsencrypt/temp\_checkpoint

# certbot 1.7.0, CentOS 7
certbot --nginx -d site.domain.com
# echo
Saving debug log to /var/log/letsencrypt/letsencrypt.log
Unable to recover files from /var/lib/letsencrypt/temp_checkpoint
Incomplete or failed recovery for /var/lib/letsencrypt/temp_checkpoint
Unable to revert temporary config

I did. Solved:

yum update
mv /var/lib/letsencrypt /var/lib/letsencrypt.original