The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

How to generate Hostname SSL without AutoSSL

Discussion in 'Security' started by gwen_the_hen, Sep 3, 2016.

  1. gwen_the_hen

    gwen_the_hen Member

    Joined:
    Sep 3, 2016
    Messages:
    10
    Likes Received:
    1
    Trophy Points:
    3
    Location:
    Worcester
    cPanel Access Level:
    Root Administrator
    Hello,

    One of my servers recently emailed me an SSL certificate for the hostname, which I installed and has been working great. AutoSSL is disabled on this server.

    I now have a new server where this hasn't happened, and I can't find any way to generate the SSL for the server's hostname. Can anyone help?
     
  2. Infopro

    Infopro cPanel Sr. Product Evangelist
    Staff Member

    Joined:
    May 20, 2003
    Messages:
    14,474
    Likes Received:
    202
    Trophy Points:
    63
    Location:
    Pennsylvania
    cPanel Access Level:
    Root Administrator
    Twitter:
    Is this what you're looking for?
    WebHost Manager »Service Configuration »Manage Service SSL Certificates

    As a Reseller Owner, you might not have access to these settings.
     
  3. gwen_the_hen

    gwen_the_hen Member

    Joined:
    Sep 3, 2016
    Messages:
    10
    Likes Received:
    1
    Trophy Points:
    3
    Location:
    Worcester
    cPanel Access Level:
    Root Administrator
    Hello,

    I've had a look through there but there aren't any certificates for the hostname. I can see certificates for the default hostname (this is what the server came with but I updated it to my own hostname almost immediately, and that was a couple of months ago). I think I must have selected 'Reseller Owner' by mistake, I rent the VPS myself from Heart Internet.

    Thanks for the response.
     
  4. cPanelMichael

    cPanelMichael Forums Analyst
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    30,854
    Likes Received:
    675
    Trophy Points:
    113
    cPanel Access Level:
    Root Administrator
    Hello,

    Free cPanel-signed certificates for the hostname are generated as of cPanel 56. Here's the relevant quote from the cPanel 56 Release Notes:

    Could you verify which version of cPanel is installed on this system, and that /var/cpanel/ssl/disable_auto_hostname_certificate doesn't exist as a file on the system?

    Code:
    cat /usr/local/cpanel/version
    stat /var/cpanel/ssl/disable_auto_hostname_certificate
    Thank you.
     
  5. gwen_the_hen

    gwen_the_hen Member

    Joined:
    Sep 3, 2016
    Messages:
    10
    Likes Received:
    1
    Trophy Points:
    3
    Location:
    Worcester
    cPanel Access Level:
    Root Administrator
    Hi,

    I've checked and that file isn't there. It does look like the certificate has been generated, but it seems to be for the main domain rather than the server itself. The hostname is [removed] but the only SSL I can see generated by cPanel is for [Removed]

    I'm running 11.58.0.25 according to the command you provided.

    Thanks.
     
    #5 gwen_the_hen, Sep 5, 2016
    Last edited by a moderator: Sep 5, 2016
  6. cPanelMichael

    cPanelMichael Forums Analyst
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    30,854
    Likes Received:
    675
    Trophy Points:
    113
    cPanel Access Level:
    Root Administrator
    Do you have access to Manage2 as a license holder? If so, check to see if the installation of free cPanel-signed hostname certificates is disabled via "Manage2 >> Dashboard >> Company >> Update Company Information". Otherwise, please report this issue to your license provider to determine if that feature is disabled.

    Thank you.
     
  7. gwen_the_hen

    gwen_the_hen Member

    Joined:
    Sep 3, 2016
    Messages:
    10
    Likes Received:
    1
    Trophy Points:
    3
    Location:
    Worcester
    cPanel Access Level:
    Root Administrator
    Hello,

    Apparently this feature is enabled. It looks like the SSL has been issued, but it's been issued to the full domain, rather than the sub-domain that is set up as my hostname. The hostname is server.example.com but the cPanel issued SSL has been issued to example.com.

    I have checked on a different server which doesn't have this problem and I can see that the SSL has been issued correctly to the sub-domain (see attached screenshot).

    Can you advise further?

    Thank you.
     
    #7 gwen_the_hen, Sep 7, 2016
    Last edited by a moderator: Sep 7, 2016
  8. cPanelMichael

    cPanelMichael Forums Analyst
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    30,854
    Likes Received:
    675
    Trophy Points:
    113
    cPanel Access Level:
    Root Administrator
    Could you open a support ticket using the link in my signature so we can take a closer look and determine why that's happening? You can post the ticket number here so we can update this thread with the outcome.

    Thank you.
     
  9. gwen_the_hen

    gwen_the_hen Member

    Joined:
    Sep 3, 2016
    Messages:
    10
    Likes Received:
    1
    Trophy Points:
    3
    Location:
    Worcester
    cPanel Access Level:
    Root Administrator
    Got it sorted:

    "The reason your server was not provisioned a new certificate is because there's already a "trusted" certificate for your server, which expireson September 7th, 2017.


    If you wish to use a cPanel-provided hostname certificate, please navigate to WHM -> Service Configuration -> Manage Service SSL Certificates, and reset all 4 service groups certificates, and then navigate to WHM -> cPanel -> Upgrade to the Latest Version and perform an update. "

    I had installed a different certificate when I was messing around with stuff, and this was blocking the cPanel issued one.

    Thank you for your help.

    Also, can I remove the attachment from my previous post as it contains details of my installation?
     
    #9 gwen_the_hen, Sep 8, 2016
    Last edited by a moderator: Sep 8, 2016
  10. Infopro

    Infopro cPanel Sr. Product Evangelist
    Staff Member

    Joined:
    May 20, 2003
    Messages:
    14,474
    Likes Received:
    202
    Trophy Points:
    63
    Location:
    Pennsylvania
    cPanel Access Level:
    Root Administrator
    Twitter:
    I've removed the attachment for you.
     
  11. gwen_the_hen

    gwen_the_hen Member

    Joined:
    Sep 3, 2016
    Messages:
    10
    Likes Received:
    1
    Trophy Points:
    3
    Location:
    Worcester
    cPanel Access Level:
    Root Administrator
    Great, thanks for all your help.
     
    Infopro likes this.
Loading...

Share This Page