Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!

Re-create Hostname SSL certificates

Discussion in 'Security' started by sozotech, Feb 25, 2017.

Tags:
  1. sozotech

    sozotech Well-Known Member

    Joined:
    Jul 26, 2013
    Messages:
    78
    Likes Received:
    1
    Trophy Points:
    8
    cPanel Access Level:
    Root Administrator
    Hello,

    I am in the process of setting up several cPanel VPS servers. I cloned a cPanel server, changed IP and hostname but it still has the original hostname in the SSL certificates and is therefore not trusted when you go to WHM.

    I tried running /usr/local/cpanel/bin/checkallsslcerts but this didn't seem to update the service certificates. Is there a way to force it to recreate all the service SSL certificates with the new hostname?

    Thanks,
    Eric
     
    SecThor likes this.
  2. SecThor

    SecThor Registered

    Joined:
    Feb 26, 2017
    Messages:
    3
    Likes Received:
    1
    Trophy Points:
    3
    Location:
    Austria
    cPanel Access Level:
    Root Administrator
    Hello,
    Would also be interested in how to solve this w/o any issues.
    Had to move some accounts from an old to a new VPS.
    But after changing the providers hostname to our hostname, the root SSL certs are still the wrong ones.
    Thanks & cheers
    Hermann
     
  3. Infopro

    Infopro cPanel Sr. Product Evangelist
    Staff Member

    Joined:
    May 20, 2003
    Messages:
    16,258
    Likes Received:
    390
    Trophy Points:
    583
    Location:
    Pennsylvania
    cPanel Access Level:
    Root Administrator
    Twitter:
    Have you tried resetting the certs from here:
    WebHost Manager »Service Configuration »Manage Service SSL Certificates
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  4. sozotech

    sozotech Well-Known Member

    Joined:
    Jul 26, 2013
    Messages:
    78
    Likes Received:
    1
    Trophy Points:
    8
    cPanel Access Level:
    Root Administrator
    Actually, I ended up getting a email with the new host certificate in it and did exactly this pasting the new cert to all the services.

    However, on a couple other servers I cloned, simply doing a /usr/local/cpanel/bin/checkallsslcerts regenerated the certs without me needing to manually paste them so not sure what the difference was.

    Eric
     
  5. SecThor

    SecThor Registered

    Joined:
    Feb 26, 2017
    Messages:
    3
    Likes Received:
    1
    Trophy Points:
    3
    Location:
    Austria
    cPanel Access Level:
    Root Administrator
    Yes, but these are self-signed certs now.
    There is no root cert available for the new hostname, only some old and for the wrong hostname are listed in SSL/TLS >> SSL Storage Manager.
    Do I have to wait for a longer time till the cert for the new hostname will be assigned?

    BR
    Hermann
     
  6. SB-Nick

    SB-Nick Well-Known Member

    Joined:
    Aug 26, 2008
    Messages:
    175
    Likes Received:
    9
    Trophy Points:
    68
    cPanel Access Level:
    Root Administrator
    Hello,

    I would check if the A record exists for the new hostname.
    Also if you are doing this through cli, try forcing the hostname with /usr/local/cpanel/bin/set_hostname

    As as last attempt I would remove the existing certs in /var/cpanel/ssl/cpanel retry.
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  7. SecThor

    SecThor Registered

    Joined:
    Feb 26, 2017
    Messages:
    3
    Likes Received:
    1
    Trophy Points:
    3
    Location:
    Austria
    cPanel Access Level:
    Root Administrator
    Thanks, it looks that this worked for me and new root certs were assigned.
    Thanks for help!
    Cheers
    Hermann
     
    SB-Nick likes this.
Loading...

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice