Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!

Replace SSL Certificates that do not match local hostname

Discussion in 'General Discussion' started by bejbi, Jul 25, 2017.

  1. bejbi

    bejbi Well-Known Member

    Joined:
    Jan 20, 2006
    Messages:
    98
    Likes Received:
    1
    Trophy Points:
    158
    Location:
    Poland
    cPanel Access Level:
    DataCenter Provider
    On my servers today all wildcard SSL certificates was changed into cPanel certificates, without any warning before.

    I found it is becouse NEW option in TweakSettings:

    "Replace SSL certificates that do not match the local hostname"
    with explain: "When you enable this option, the checkallsslcerts script will replace any SSL certificates that do not match the hostname of the server with a cPanel-signed certificate. This includes wildcard certificates."

    This option in by default set to ON !!!

    But there is NO infromation in changelog of RELEASE version 64.0.x (until build 33)

    I think it should be not like this ...

    W.
     
    #1 bejbi, Jul 25, 2017
  2. rpvw

    rpvw Well-Known Member

    Joined:
    Jul 18, 2013
    Messages:
    721
    Likes Received:
    245
    Trophy Points:
    93
    Location:
    Spain
    cPanel Access Level:
    Root Administrator
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
    #2 rpvw, Jul 25, 2017
  3. cPanelMichael

    cPanelMichael Forums Analyst
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    44,339
    Likes Received:
    1,851
    Trophy Points:
    363
    cPanel Access Level:
    Root Administrator
    Hello,

    You can disable that option if you prefer to keep your wildcard SSL certificate in the future. However, have you considered allowing it to be replaced by a cPanel-signed SSL certificate instead? With AutoSSL and Domain TLS, secure access to services such as cPanel/WHM on a per-domain basis is now easily available:

    What is Domain TLS - cPanel Knowledge Base - cPanel Documentation

    Thank you.
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
    #3 cPanelMichael, Jul 25, 2017
(You must log in or sign up to post here.)
Loading...
Similar Threads - Replace Certificates match
  1. 4u123

    Valid service certificates replaced

    4u123, Dec 22, 2017, in forum: Security
    Replies:
    11
    Views:
    450
    cPanelMichael
    Jan 10, 2018
  2. a.post

    Wildcard SSL certificates replaced

    a.post, Aug 18, 2017, in forum: Security
    Replies:
    1
    Views:
    411
    cPanelMichael
    Aug 18, 2017
  3. techguide

    All signed purchased SSL certificates replaced with self-signed versions

    techguide, Aug 10, 2017, in forum: Security
    Replies:
    2
    Views:
    442
    cPanelMichael
    Aug 22, 2017
  4. sherwin_flight

    Automatic Replacement of SSL Certificates

    sherwin_flight, Oct 17, 2016, in forum: Security
    Replies:
    1
    Views:
    493
    cPanelMichael
    Nov 2, 2016
  5. rinkleton

    Will AutoSSL replace existing AutoSSL certs that are not about to expire?

    rinkleton, May 24, 2018, in forum: Security
    Replies:
    1
    Views:
    79
    cPanelLauren
    May 24, 2018

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Accept Learn More...
    Dismiss Notice