Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Something weird with auto SSLs

Discussion in 'Security' started by rinkleton, Jul 11, 2017.

Tags:
  1. rinkleton

    rinkleton Well-Known Member

    Joined:
    Jul 16, 2015
    Messages:
    61
    Likes Received:
    2
    Trophy Points:
    8
    Location:
    Cleveland
    cPanel Access Level:
    Root Administrator
    I have two accounts that had auto-ssls (cpanel) that expired a few days ago. It looks like auto ssl renewed them successfully, but I'm intermittently getting failures. Sometimes it will act like there is no ssl installed, sometimes it will say the cert is expired (shows the old cert when you view info), and sometimes it pulls the new cert and works.

    At first I thought it was something in my anti-virus (eset). Disabling it sometimes helped, but not always. Then I tried deleting and re-issuing the certs. That only worked sometimes and strangely the issue date on the cert is showing as yesterday?. Then I tried issuing Let's Encrypt certs.... those seem to work most of the time that the anti-virus is off.

    I tried to check them with online ssl checkers and they seem to be showing random failures too. But they are hard to test because it looks like they cache the results.

    Anyone else having weirdness?
     
  2. Eminds

    Eminds Well-Known Member

    Joined:
    Nov 10, 2016
    Messages:
    211
    Likes Received:
    13
    Trophy Points:
    18
    Location:
    India
    cPanel Access Level:
    Root Administrator
    check the logs through WHM >> Manage Auto SSL >> logs as that will give you an idea of whats happening when you are renewing the SSLs
     
  3. 24x7server

    24x7server Well-Known Member

    Joined:
    Apr 17, 2013
    Messages:
    1,488
    Likes Received:
    60
    Trophy Points:
    28
    Location:
    India
    cPanel Access Level:
    Root Administrator
    Hi,

    Random failures mostly occurs when you have a load balancer or some other proxy in front of main web server that shapes the traffic from one server to another.

    However, to go about this issue, I would like you to remove the SSL completely for the account from this server and then reissue is again...
     
  4. rinkleton

    rinkleton Well-Known Member

    Joined:
    Jul 16, 2015
    Messages:
    61
    Likes Received:
    2
    Trophy Points:
    8
    Location:
    Cleveland
    cPanel Access Level:
    Root Administrator
    According to the logs a new cert was successfully installed for one of the affected accounts june 20th. We could see the cert in the store.

    We don't have any proxies or load balances. This is 2 accounts among over 100 that are working fine on the same server.

    We did try to uninstall the certs with the results listed above
     
  5. cPanelMichael

    cPanelMichael Forums Analyst
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    38,658
    Likes Received:
    1,427
    Trophy Points:
    363
    cPanel Access Level:
    Root Administrator
    Hello,

    Feel free to open a support ticket using the link in my signature so we can take a closer look and see why the certificates are failing.

    Thanks!
     
Loading...

Share This Page