When the "Do not automatically re-enroll" checkbox is selected, the auto-enrollment process does not renew the certificate when it reaches its renewal period or expires. Auto-enrollment is intended to manage certificates automatically by renewing them before they expire, but by checking the "Do not automatically re-enroll" box, you effectively disable this feature for that specific certificate.
If the certificate expires and you have the "Do not automatically re-enroll" option enabled, it will not be automatically renewed, and you may experience issues or disruptions in services that rely on the certificate for authentication or encryption.
The renewal period will not conflict with the option "Do not auto re-enroll." If you enable this option, the renewal period is simply ignored, and the certificate is not renewed.
If you want to manually renew the certificate, you must request a new certificate from the certification authority (CA) and replace the expired certificate in your environment.
Allowing automatic re-enrollment for certificates that are critical to the functionality of your environment is generally recommended to avoid issues or disruptions in services. If you must disable automatic re-enrollment for any reason, keep track of the certificate expiration dates and plan for manual renewals.