How can I redirect webmail. and cpanel related subdomains to SSL?

cPanelMichael

Administrator
Staff member
Apr 11, 2011
47,913
2,202
363
Hello :)

Proxy subdomains are not yet designed to work with SSL. However, in "WHM Home » Server Configuration » Tweak Settings", under "Security", you can enable:

"Require SSL for all remote logins to cPanel, WHM, and Webmail. Recommended."

This way, when a user accesses the non-secure proxy subdomain URL, they are redirected to the secure ports (albeit not port 443).

Thank you.
 

cPanelMichael

Administrator
Staff member
Apr 11, 2011
47,913
2,202
363
I could not find an existing feature request for this in our new feature request system. I recommend opening a feature request for true SSL support with proxy subdomains:

Submit A Feature Request

Thank you.
 

nick122147

Member
Sep 9, 2013
13
0
1
cPanel Access Level
Root Administrator
Hello :)

Proxy subdomains are not yet designed to work with SSL. However, in "WHM Home » Server Configuration » Tweak Settings", under "Security", you can enable:

"Require SSL for all remote logins to cPanel, WHM, and Webmail. Recommended."

This way, when a user accesses the non-secure proxy subdomain URL, they are redirected to the secure ports (albeit not port 443).

Thank you.
But this removes the benefit of the proxy subdomains, they can then not be accesses from behind a firewall.
If there is a firewall blocking ports except regular http 80 and https 443, it is not possible in any way to connect to cpanel,whm,webmail securely ?

Thank you
 

cPanelMichael

Administrator
Staff member
Apr 11, 2011
47,913
2,202
363
But this removes the benefit of the proxy subdomains, they can then not be accesses from behind a firewall. If there is a firewall blocking ports except regular http 80 and https 443, it is not possible in any way to connect to cpanel,whm,webmail securely ?
That is correct. Proxy subdomains are not designed to work over port 443. Thus, cPanel/WHM/Webmail are accessible over port 80, but not using https. I recommend opening a feature request for this.

Thank you.