SOLVED Disable SSL Notifications in cPanel 70?

sys_alex

Member
Apr 23, 2018
18
6
3
Spain, Galicia
cPanel Access Level
Root Administrator
Greetings,

with this new cpanel version an old problem is relevant again. There are new AutoSSL notifications enabled by default that i don't want functional.

In another thread this command disabled all notifications before:

whmapi1 set_autossl_metadata metadata_json='{"clobber_externally_signed":1,"notify_autossl_expiry_coverage":0,"notify_autossl_renewal_coverage":0,"notify_autossl_renewal":0}'

Can you please give us an updated version to this so we can disable again all notifications?

Thank you
 
  • Like
Reactions: rarod

cPanelMichael

Administrator
Staff member
Apr 11, 2011
47,904
2,218
463
Hello @sys_alex,

You can actually disable the notifications directly from Web Host Manager in cPanel & WHM version 70. Here's the pertinent section from the cPanel & WHM version 70 Release Notes:

Global options to disable AutoSSL notifications
In cPanel & WHM version 70, we added options to disable AutoSSL notifications for cPanel users. You can disable the following AutoSSL notifications in WHM's Manage AutoSSL interface (WHM >> Home >> SSL/TLS >> Manage AutoSSL):

Notes:
  • If you deselect any of the following options, the system will also remove the corresponding option from cPanel's Contact Information interface (Home >> cPanel >> Preferences >> Contact Information).
  • If you deselect any of the following options, the system sets the corresponding option to disabled in WHM's Contact Manager interface (Home >> WHM >> Server Contacts >> Contact Manager).
  • The system will not send notifications to cPanel users for options that you disable.
  • These options override the user's current settings.
  • Notify when AutoSSL cannot request a certificate because all domains on the website have failed DCV. — AutoSSL cannot request a new certificate if all of the domains on a website fail domain control validation (DCV).
  • Notify when AutoSSL defers certificate renewal because a domain on the current certificate has failed DCV. — AutoSSL will not attempt to renew a certificate if a currently-secured domain fails DCV. All currently-secured domains must pass DCV for AutoSSL to attempt to renew a certificate during normal circumstances. However, If the certificate will expire in three days or fewer, AutoSSL will drop coverage for the domains that fail and force a renewal.
  • Notify when AutoSSL will not secure new domains because a domain on the current certificate has failed DCV . — AutoSSL will not attempt to secure new domains if a currently-secured domain fails DCV. All of the currently-secured domains and at least one of the unsecured domains must pass DCV for AutoSSL to attempt to issue a new certificate. However, If the certificate will expire in three days or fewer, AutoSSL will drop coverage for the domains that fail and force a reissue.
Note:
  • If the certificate expires in three days or fewer, the system does not send this notification.
  • Notify when AutoSSL has renewed a certificate successfully. — When AutoSSL renews a certificate, the system will send a notification.
  • Notify when AutoSSL has renewed a certificate and the new certificate lacks one or more of the website’s domains. — AutoSSL renews a certificate even if the new certificate does not contain any of the domains from the previous certificate.
  • Notify when AutoSSL has renewed a certificate and the new certificate lacks at least one domain that the previous certificate secured. — AutoSSL renews certificates even if the new certificate does not contain any domains from the previous certificate
Can you confirm if this helps?

Thank you.
 

cPanelMichael

Administrator
Staff member
Apr 11, 2011
47,904
2,218
463
Hello @sys_alex,

I recommend using the set_autossl_metadata_key WHM API 1 function instead of whmapi1 set_autossl_metadata to avoid the need to use JSON in the command. Here's a link to our documentation on this WHM API 1 function:

WHM API 1 Functions - set_autossl_metadata_key - Developer Documentation - cPanel Documentation

Here's an example of the command you would use to disable all notifications found under "WHM >> Manage AutoSSL >> Options":

Code:
whmapi1 set_autossl_metadata_key key=notify_autossl_expiry value=0 ; whmapi1 set_autossl_metadata_key key=notify_autossl_expiry_coverage value=0 ; whmapi1 set_autossl_metadata_key key=notify_autossl_renewal value=0 ; whmapi1 set_autossl_metadata_key key=notify_autossl_renewal_coverage value=0 ; whmapi1 set_autossl_metadata_key key=notify_autossl_renewal_coverage_reduced value=0 ; whmapi1 set_autossl_metadata_key key=notify_autossl_renewal_uncovered_domains value=0
Thank you.
 
  • Like
Reactions: sys_alex

cPanelMichael

Administrator
Staff member
Apr 11, 2011
47,904
2,218
463
This is a great solution! It worked wonderfully. You should create a sticky with you last answer, since this may become a problem when more people get version 70.
Hi @sys_alex,

I'm glad to see it worked well. I've included that information in a response on this thread since it's already pinned to the top of the General Discussion category and includes previous discussion on this topic.

Thanks!