Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!

SOLVED [CPANEL-26207] AutoSSL - Domains not passing validation

Discussion in 'Security' started by adeyjones, Apr 26, 2019.

  1. adeyjones

    adeyjones Member

    Joined:
    Apr 26, 2019
    Messages:
    7
    Likes Received:
    1
    Trophy Points:
    3
    Location:
    Merseyside, UK
    cPanel Access Level:
    Root Administrator
    Hi all

    I have always had SSL certificates signed for domains via AutoSSL but recently I have noticed that domains using the private .nhs.uk TLD have been failing validation and therefore not being renewed causing problems for the site owners.

    In the AutoSSL log it simply says domain.nhs.uk is not a registered internet domain (apparently simply because it is not in the nominet registry not known on WHOIS).

    I have highlighted a few examples in the attached PNG.

    My host support opened a ticket with cPanel who say that this is an ongoing issue which is being looked in to. Comodo/Sectigo support have told me that I can get these domains through validation using other methods such as http or CNAME/TXT records which is fine, but I can't generate a .txt file to upload nor generate a hash for a CNAME record via AutoSSL.

    So how can I general SSL certificates that wont pass DCV using the AutoSSL method?

    Thanks in advance.
     

    Attached Files:

  2. cPanelLauren

    cPanelLauren Forums Analyst II Staff Member

    Joined:
    Nov 14, 2017
    Messages:
    6,124
    Likes Received:
    474
    Trophy Points:
    233
    Location:
    Houston
    cPanel Access Level:
    DataCenter Provider
    Hi @adeyjones


    Did they by chance provide you with a case number for this issue? Any ongoing issue that is being looked into should have an internal case ID associated with it.
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  3. adeyjones

    adeyjones Member

    Joined:
    Apr 26, 2019
    Messages:
    7
    Likes Received:
    1
    Trophy Points:
    3
    Location:
    Merseyside, UK
    cPanel Access Level:
    Root Administrator
    Hi Lauren

    I have asked my host support who spoke to them on my behalf and they have come back with ticket ID 11986627 - not sure if you can access that to see what was discussed?

    Adrian
     
  4. adeyjones

    adeyjones Member

    Joined:
    Apr 26, 2019
    Messages:
    7
    Likes Received:
    1
    Trophy Points:
    3
    Location:
    Merseyside, UK
    cPanel Access Level:
    Root Administrator
    Hi @cPanelLauren

    Just wondering if there is an update to this please. Many thanks for your help.

    Adrian
     
  5. cPanelLauren

    cPanelLauren Forums Analyst II Staff Member

    Joined:
    Nov 14, 2017
    Messages:
    6,124
    Likes Received:
    474
    Trophy Points:
    233
    Location:
    Houston
    cPanel Access Level:
    DataCenter Provider
    Hi @adeyjones

    Thanks for providing the ticket ID. This issue is indeed associated with an ongoing internal case we have CPANEL-26207 - this case has been resolved in v 78.0.22 of cPanel/WHM which isn't available just yet, though it should be soon. I'll update this thread when it is.


    Thanks!
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  6. adeyjones

    adeyjones Member

    Joined:
    Apr 26, 2019
    Messages:
    7
    Likes Received:
    1
    Trophy Points:
    3
    Location:
    Merseyside, UK
    cPanel Access Level:
    Root Administrator
    Hi @cPanelLauren

    Thanks for letting me know, is there anywhere that I can see the details of 26207, or release notes etc.. and see an estimated release date for the udpate?

    I have about 15 sites at the mo which are without their SSL, I have been speaking with Sectigo (Comodo) who have not been very helpful with trying to get domains passed validation and my only other option is to buy an SSL for each site which would be expensive and there's no point in doing that if the update is imminent.

    Adrian
     
  7. cPanelLauren

    cPanelLauren Forums Analyst II Staff Member

    Joined:
    Nov 14, 2017
    Messages:
    6,124
    Likes Received:
    474
    Trophy Points:
    233
    Location:
    Houston
    cPanel Access Level:
    DataCenter Provider
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  8. adeyjones

    adeyjones Member

    Joined:
    Apr 26, 2019
    Messages:
    7
    Likes Received:
    1
    Trophy Points:
    3
    Location:
    Merseyside, UK
    cPanel Access Level:
    Root Administrator
    Hi @cPanelLauren

    I am just wondering if anything has changed in the last 24 hours, because I notice that v28.0.22 is not yet out and I am still on v28.0.21 but I put a new website live this morning and the .nhs.uk domain has somehow passed validation and is fully certified.

    That said, looking down the list of domains via "Manage SSL hosts" none of the others that I have been having problems with have changed and still have red padlocks, so I have ran AutoSSL for that account and they have still all failed validation, there is no difference in the config or DNS between the one that has passed and all the .nhs.uk domains that have failed, so I can't explain why this one has passed?

    Adrian
     
  9. cPanelLauren

    cPanelLauren Forums Analyst II Staff Member

    Joined:
    Nov 14, 2017
    Messages:
    6,124
    Likes Received:
    474
    Trophy Points:
    233
    Location:
    Houston
    cPanel Access Level:
    DataCenter Provider
    Hi @adeyjones


    As far as I can tell after looking through the associated cases nothing in respect to this has changed. For the domains that are continuing to fail are you receiving an error in the AutoSSL logs that they're not registered?


    Thanks!
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  10. adeyjones

    adeyjones Member

    Joined:
    Apr 26, 2019
    Messages:
    7
    Likes Received:
    1
    Trophy Points:
    3
    Location:
    Merseyside, UK
    cPanel Access Level:
    Root Administrator
    @cPanelLauren

    Yes they're still getting the usual "not a registered internet domain" message but strangely this one passed. I may be putting another .nhs.uk site live in the morning, client permitting, so i'll see what happens with that one. Looking forward to the update though.
     
    cPanelLauren likes this.
  11. Gleb

    Gleb Registered

    Joined:
    May 6, 2019
    Messages:
    2
    Likes Received:
    0
    Trophy Points:
    1
    Location:
    Dubai
    cPanel Access Level:
    Root Administrator
    any update on cPanel v78.0.22
     
  12. cPanelLauren

    cPanelLauren Forums Analyst II Staff Member

    Joined:
    Nov 14, 2017
    Messages:
    6,124
    Likes Received:
    474
    Trophy Points:
    233
    Location:
    Houston
    cPanel Access Level:
    DataCenter Provider
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  13. adeyjones

    adeyjones Member

    Joined:
    Apr 26, 2019
    Messages:
    7
    Likes Received:
    1
    Trophy Points:
    3
    Location:
    Merseyside, UK
    cPanel Access Level:
    Root Administrator
    Hi @cPanelLauren

    As above, I put 2 new .nhs.uk domain websites live over the weekend and they have been assigned an SSL via AutoSSL which is very strange, especially because I have run AutoSSL again to see if the other .nhs.uk domains (which previously said not registered internet domains) would be assigned one, and only one out of several has been picked up (although this is one that is due to expire soon, not one that has already expired).
     
  14. cPanelLauren

    cPanelLauren Forums Analyst II Staff Member

    Joined:
    Nov 14, 2017
    Messages:
    6,124
    Likes Received:
    474
    Trophy Points:
    233
    Location:
    Houston
    cPanel Access Level:
    DataCenter Provider
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  15. cPanelLauren

    cPanelLauren Forums Analyst II Staff Member

    Joined:
    Nov 14, 2017
    Messages:
    6,124
    Likes Received:
    474
    Trophy Points:
    233
    Location:
    Houston
    cPanel Access Level:
    DataCenter Provider
    Hello

    We released 78.0.23 which included a fix for this issue, the case is also listed in the changelogs. You can check them here: Change Logs - Change Logs - cPanel Documentation

    Please let us know if anyone continues to experience issues related to this.

    Thanks!
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
Loading...

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice