Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!

AutoSSL for add-on domains under single account?

Discussion in 'Security' started by chuckcintron, Jun 26, 2018.

  1. chuckcintron

    chuckcintron Member

    May 17, 2012
    Likes Received:
    Trophy Points:
    cPanel Access Level:
    Root Administrator
    Newbie here. Cannot figure this out.

    Account in WHM is owned by 'mysite'. There is a domain associated with this account, -- and it has a paid for wildcard SSL.

    When I create an add-on domain (e.g. under this account and then visit the autoSSL facility in cPanel, it tells me that the domain is already covered by a certificate (the one bound to - and therefore will not be managed by autoSSL. It also says that the certificate does not match the domain name, and the domain is insecure.

    I somehow end up getting the version of the domain to be covered by autoSSL but it's through an arcane process of:

    1. changing the add-on domain so it now has root path public_html
    2. deleting the prior root directory public_html/
    3. running autoSSL TWICE before it works - only for the www version of the add-on domain

    The first time it complains that the non-www version of the site could not produce the .well-known/pki-validation file. The second time, that message is still there but then the www version of the site is green under autoSSL, and validated.

    Any help would be very much appreciated. I'm not confident at all that this solution is going to be robust and later auto-renew when the certs are about to expire.
    #1 chuckcintron, Jun 26, 2018
    Last edited by a moderator: Jun 27, 2018
  2. cPanelMichael

    cPanelMichael Technical Support Community Manager Staff Member

    Apr 11, 2011
    Likes Received:
    Trophy Points:
    cPanel Access Level:
    Root Administrator
    Hello @chuckcintron,

    That's happening because the virtual hosts for addon domains are setup as subdomains of the primary domain name. You can read more information about how addon domains are setup under the Addon Domains section at:

    How Your Server Handles Domains and Virtual Hosts - cPanel Knowledge Base - cPanel Documentation

    You can find a user-submitted workaround and additional discussion of this issue on the following thread:

    AutoSSL fails for addon domains when valid wildcard cert is installed

    Thank you.
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice