Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

SOLVED AutoSSL not creating certificates

Discussion in 'Security' started by coursevector, Dec 9, 2016.

Tags:
  1. coursevector

    coursevector Active Member

    Joined:
    Feb 23, 2015
    Messages:
    34
    Likes Received:
    0
    Trophy Points:
    6
    cPanel Access Level:
    Root Administrator
    I looked and looked and couldn't find a solution to my problem. I have about 20~ accounts all with valid domains. But AutoSSL says it can't get certificates for them. See below:

    Code:
    Log for the AutoSSL run for “USERNAME”: Friday, December 9, 2016 9:34:45 AM GMT-0500 (cPanel (powered by Comodo))
    2:34:45 PM This system has AutoSSL set to use “cPanel (powered by Comodo)”.
    2:34:45 PM Checking websites for “USERNAME” …
    2:34:45 PM The website “example.com”, owned by “USERNAME”, has no SSL certificate. AutoSSL will attempt to obtain a new certificate and install it.
    2:34:45 PM WARN The domain “example.com” failed domain control validation: “example.com” does not resolve to any IPv4 addresses on the internet. at bin/autossl_check.pl line 512.
    2:34:45 PM WARN The domain “www.example.com” failed domain control validation: “www.example.com” does not resolve to any IPv4 addresses on the internet. at bin/autossl_check.pl line 512.
    2:34:45 PM WARN The domain “mail.example.com” failed domain control validation: “mail.example.com” does not resolve to any IPv4 addresses on the internet. at bin/autossl_check.pl line 512.
    2:34:45 PM The system has completed the AutoSSL check for “USERNAME”.
    2:34:45 PM The system has finished checking 1 user. 
    Except that example.com, www.example.com, etc all work and are valid. I have this error for all the accounts on the server.
     
  2. coursevector

    coursevector Active Member

    Joined:
    Feb 23, 2015
    Messages:
    34
    Likes Received:
    0
    Trophy Points:
    6
    cPanel Access Level:
    Root Administrator
    Ticket #8048341
     
  3. coursevector

    coursevector Active Member

    Joined:
    Feb 23, 2015
    Messages:
    34
    Likes Received:
    0
    Trophy Points:
    6
    cPanel Access Level:
    Root Administrator
    I managed to get the certificates to go through by disabling CSF/LFD. But this is not a great solution in the 90days when the certificates need to renew. I checked the IPs used to validate the text files and they were not blocked by CSF. So something else is causing the issue.
     
  4. coursevector

    coursevector Active Member

    Joined:
    Feb 23, 2015
    Messages:
    34
    Likes Received:
    0
    Trophy Points:
    6
    cPanel Access Level:
    Root Administrator
    This was resolved, there was a block in CSF for:
    Code:
    192.0.0.0/8 # lfd: (NETBLOCK) 192.0.0.0/8
    Some of the root DNS servers are in the 192 block and that was causing the issue. Removing the block fixed the issue.
     
  5. cPanelMichael

    cPanelMichael Forums Analyst
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    38,658
    Likes Received:
    1,425
    Trophy Points:
    363
    cPanel Access Level:
    Root Administrator
    Hello,

    I'm happy to see the issue is now resolved. Thank you for updating us with the outcome.
     
Loading...

Share This Page