Switching to Let's Encrypt was SUCH a mistake! I guess I didn't have a choice because Sectigo was messing up, but still. I made a thread awhile back on it, I had to switch back to Sectigo because it has a limit of 100 domains per account (including www, non-www, and mail).
(Although Let's Encrypt swears that this limitation doesn't exist)
Well, the domains that still had a cert under Let's Encrypt all had the cert to expire 2 days ago, and AutoSSL didn't renew them under Sectigo! So I have 60 or so accounts that are throwing a cert error for close to 24 hours. Including the main domain that I use to access WHM!
So when I log in to WHM I have to go through the "Safety" checkpoint.
I go to WHM > Manage AutoSSL and see that it's set to Sectigo (as it should be). But when I click on Options, Logs, Manage Users, or Pending Queue, it just refreshes the page. I right-clicked and tried to open that in a new tab, but then I'm giving the Safety checkpoint again. I click to proceed, and it just takes me back to the main page for Manage AutoSSL.
I found the AutoSSL log at /var/cpanel/logs/autossl, though, and at around 5:30pm EST the latest entry said:
The queue contains a request for a certificate for “example”’s website “example.com” (order item ID “12345”). The system last polled for this certificate at Sep 25, 2019, 8:12:08 PM UTC. The next poll will be no earlier than Sep 25, 2019, 8:12:08 PM UTC.
Great, fine, OK. But now it's 10:30pm EST and the entry says:
... The system last polled for this certificate at Sep 26, 2019, 1:37:08 AM UTC. The next poll will be no earlier than Sep 26, 2019, 1:37:08 AM UTC.
What the... ? Since it's been 2 full days since the cert expired, it looks like it's just going to keep pushing up the poll time and not install a new one. Which is just wonderful, I lost clients the first time it messed up, and now I'm definitely going to lose a lot more!
Is there a magic trick to make this work?
(Although Let's Encrypt swears that this limitation doesn't exist)
Well, the domains that still had a cert under Let's Encrypt all had the cert to expire 2 days ago, and AutoSSL didn't renew them under Sectigo! So I have 60 or so accounts that are throwing a cert error for close to 24 hours. Including the main domain that I use to access WHM!
So when I log in to WHM I have to go through the "Safety" checkpoint.
I go to WHM > Manage AutoSSL and see that it's set to Sectigo (as it should be). But when I click on Options, Logs, Manage Users, or Pending Queue, it just refreshes the page. I right-clicked and tried to open that in a new tab, but then I'm giving the Safety checkpoint again. I click to proceed, and it just takes me back to the main page for Manage AutoSSL.
I found the AutoSSL log at /var/cpanel/logs/autossl, though, and at around 5:30pm EST the latest entry said:
The queue contains a request for a certificate for “example”’s website “example.com” (order item ID “12345”). The system last polled for this certificate at Sep 25, 2019, 8:12:08 PM UTC. The next poll will be no earlier than Sep 25, 2019, 8:12:08 PM UTC.
Great, fine, OK. But now it's 10:30pm EST and the entry says:
... The system last polled for this certificate at Sep 26, 2019, 1:37:08 AM UTC. The next poll will be no earlier than Sep 26, 2019, 1:37:08 AM UTC.
What the... ? Since it's been 2 full days since the cert expired, it looks like it's just going to keep pushing up the poll time and not install a new one. Which is just wonderful, I lost clients the first time it messed up, and now I'm definitely going to lose a lot more!
Is there a magic trick to make this work?
