Unable to delete orphaned certificate

[MildDisaster]

This is 25.1.2

Setup HAProxy to trial something. In the process created a certificate for the public service.

Decided not to use HAProxy, made sure to delete the service/pool/server manually first (probably not required, karma if anything).
Then uninstalled the HAProxy.

Went to go remove the certificate from trusts, but it is throwing an error.

Code Select Expand

Item in use by
HAProxy - ####### service {HAProxy.frontends.frontend.8677cf50-aa25-4cc7-b8d1-b9c3131de795}

Not sure how to remediate this, please advise, thank you.

[MildDisaster]

Given no response on this topic; is there a bug tracker, or an issue ticket system I can submit this too ?

Its not blocking type issue, but perhaps the plugin maintainer might be interested, or maybe the UI team for better dealing with orphaned items.

[newsense]

You can try opening an issue on github opnsense/plugins

[tmueko]

I have the same problem but in core: I created some certificates and added them to a revocation-list. Denn I deleted CA and CRL. Now I have certs in use which cant't be deleted:

Code Select Expand

Item in use by
cert - <CN> {crl.cert}


Code Select Expand

find / -name crl.cert returned nothing.

[bradz71]

@MildDisaster

Just ran into something similar myself.  Here is what worked for me.  Based on your error message, you have an orphaned frontend from and old HAProxy installation.  Foolproof way to fix is to reinstall HAProxy, then browse to the frontend configs.  Delete the old frontend config. Check System: Trust: Certificates and remove old certificate.  Uninstall HAProxy.  Done :)   Hope this helps.

[Patrick M. Hausen]

Or download configuration backup, open the XML in an editor, carefully remove the entire HAproxy section, re-upload configuration.