Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Re-create Hostname SSL certificates

Discussion in 'Security' started by sozotech, Feb 25, 2017.

Tags:
  1. sozotech

    sozotech Well-Known Member

    Joined:
    Jul 26, 2013
    Messages:
    71
    Likes Received:
    1
    Trophy Points:
    8
    cPanel Access Level:
    Root Administrator
    Hello,

    I am in the process of setting up several cPanel VPS servers. I cloned a cPanel server, changed IP and hostname but it still has the original hostname in the SSL certificates and is therefore not trusted when you go to WHM.

    I tried running /usr/local/cpanel/bin/checkallsslcerts but this didn't seem to update the service certificates. Is there a way to force it to recreate all the service SSL certificates with the new hostname?

    Thanks,
    Eric
     
    SecThor likes this.
  2. SecThor

    SecThor Registered

    Joined:
    Feb 26, 2017
    Messages:
    3
    Likes Received:
    1
    Trophy Points:
    3
    Location:
    Austria
    cPanel Access Level:
    Root Administrator
    Hello,
    Would also be interested in how to solve this w/o any issues.
    Had to move some accounts from an old to a new VPS.
    But after changing the providers hostname to our hostname, the root SSL certs are still the wrong ones.
    Thanks & cheers
    Hermann
     
  3. Infopro

    Infopro cPanel Sr. Product Evangelist
    Staff Member

    Joined:
    May 20, 2003
    Messages:
    15,769
    Likes Received:
    313
    Trophy Points:
    433
    Location:
    Pennsylvania
    cPanel Access Level:
    Root Administrator
    Twitter:
    Have you tried resetting the certs from here:
    WebHost Manager »Service Configuration »Manage Service SSL Certificates
     
  4. sozotech

    sozotech Well-Known Member

    Joined:
    Jul 26, 2013
    Messages:
    71
    Likes Received:
    1
    Trophy Points:
    8
    cPanel Access Level:
    Root Administrator
    Actually, I ended up getting a email with the new host certificate in it and did exactly this pasting the new cert to all the services.

    However, on a couple other servers I cloned, simply doing a /usr/local/cpanel/bin/checkallsslcerts regenerated the certs without me needing to manually paste them so not sure what the difference was.

    Eric
     
  5. SecThor

    SecThor Registered

    Joined:
    Feb 26, 2017
    Messages:
    3
    Likes Received:
    1
    Trophy Points:
    3
    Location:
    Austria
    cPanel Access Level:
    Root Administrator
    Yes, but these are self-signed certs now.
    There is no root cert available for the new hostname, only some old and for the wrong hostname are listed in SSL/TLS >> SSL Storage Manager.
    Do I have to wait for a longer time till the cert for the new hostname will be assigned?

    BR
    Hermann
     
  6. SB-Nick

    SB-Nick Well-Known Member

    Joined:
    Aug 26, 2008
    Messages:
    175
    Likes Received:
    9
    Trophy Points:
    68
    cPanel Access Level:
    Root Administrator
    Hello,

    I would check if the A record exists for the new hostname.
    Also if you are doing this through cli, try forcing the hostname with /usr/local/cpanel/bin/set_hostname

    As as last attempt I would remove the existing certs in /var/cpanel/ssl/cpanel retry.
     
  7. SecThor

    SecThor Registered

    Joined:
    Feb 26, 2017
    Messages:
    3
    Likes Received:
    1
    Trophy Points:
    3
    Location:
    Austria
    cPanel Access Level:
    Root Administrator
    Thanks, it looks that this worked for me and new root certs were assigned.
    Thanks for help!
    Cheers
    Hermann
     
    SB-Nick likes this.
Loading...

Share This Page