Need to temporarily enable TLSv1

tomfra · Jan 19, 2021

I need to enable TLSv1 and TLSv1.1 on our server temporarily, for one of our apps that requires it still, for now. However, cPanel is no longer allowing that the "standard way". Editing the values in httpd.conf do not seem to do anything. How should I proceed?

Thanks!

serpent_driver · Jan 19, 2021

Home »Service Configuration »Apache Configuration »Global Configuration

cPRex · Jan 19, 2021

@tomfra - editing the httpd.conf file directly on a cPanel system will never give good results, as cPanel builds that file from other configuration options on the system, so your changes will be overwritten. Using the area of WHM that @serpent_driver highlighted is the correct way to adjust the ciphers and TLS options on the machine. Can you try that and let us know if you still see issues?

tomfra · Jan 19, 2021

You can no longer add TLSv1 via GUI, cpanel will complain about it.

cPRex · Jan 19, 2021

Can you let me know what you see in the interface when you try to make that change?

tomfra · Jan 19, 2021

cPRex: Right now our support is working on it so I cannot try it now.

cPRex · Jan 19, 2021

If you can get me some additional details on what you see in the interface when you have the chance I'd be happy to do some additional testing on my end.

tomfra · Jan 19, 2021

Thanks, will do. We have paid support that is normally quite capable, I posted on the forums because this time they were not available for a while and we had to solve the issue urgently. They are on it now so hopefully they will be able to solve it.

vacancy · Jan 19, 2021

Since v90, support for cpanel apache tls 1.0 and tls 1.1 has been removed.

When we want to activate from the Apache configuration section, we see a faulty configuration warning. We will be glad if you share the solution.

Apache TLS 1.0 support Cpanel 90 version

Hi; It seems that apache TLS version 1.0 support has been completely removed in Cpanel 90 version, these directives are no longer accepted when we want to activate TLS 1.0 with global configuration. Those using old browsers still use tls 1.0, how can we get this support back?

forums.cpanel.net

tomfra · Jan 20, 2021

Vacancy: Our support solved it for us by editing the apache conf file directly and setting it so that cpanel is unable to rewrite it. As I did not do the modification myself, I do not have all the details, however.

cPRex · Jan 20, 2021

@vacancy - thanks for posting that! That's exactly why we have this community - no one person can keep track of all the changes and remember everything!

@tomfra - the only way to achieve that would be through include files as outlined here: Advanced Apache Configuration | cPanel & WHM Documentation

Thread starter	Similar threads	Forum	Replies	Date
R	I need some help in custom CSF regex	Security	3	Today at 1:07 AM
	I need to open Minecraft port on cpanel	Security	19	Nov 5, 2022
K	Need help with cPanel support IP addresses	Security	1	Sep 14, 2022
P	I need license validation API.	Security	5	Aug 23, 2022
S	Need SSL Without www	Security	6	Mar 22, 2022

Search

Search

Need to temporarily enable TLSv1

tomfra

Well-Known Member

serpent_driver

Well-Known Member

cPRex

Jurassic Moderator

tomfra

Well-Known Member

cPRex

Jurassic Moderator

tomfra

Well-Known Member

cPRex

Jurassic Moderator

tomfra

Well-Known Member

vacancy

Well-Known Member

Apache TLS 1.0 support Cpanel 90 version

tomfra

Well-Known Member

cPRex

Jurassic Moderator