SSL certificate revoked

Elvis Ceh · May 28, 2017

I have sudenly issue with access to WHM and CPanel because SSL certificate is revoked even still valid till september 2017.

Please check - Removed -

I also cant do /usr/local/cpanel/bin/checkallsslcerts

Code:

The system will check for the certificate for the “cpanel” service.
The system will attempt to verify that the certificate for the “cpanel” service is still valid using OCSP (Online Certificate Status Protocol).
The system will attempt to replace the revoked certificate for the “cpanel” service with a signed certificate from the cPanel Store.
The system will attempt to install a certificate for the “cpanel” service from the system ssl storage.
None of the certificates in the system ssl storage were acceptable to use for the “cpanel” service.
The system will attempt to install a certificate for the “cpanel” service from the cPanel store.
[WARN] (XID ey26j2) Your certificate for “xxxxx.x.example.eu” (ID: xxxxx.x.example.eu_c0fa9_d0d1f_1501631999_65c875f6bd56a74b587f4476b0b323bf) already has the same “friendly_name” (xxxxx.x.example.eu and www.xxxxx.x.example.eu) as the new certificate. Each certificate’s “friendly_name” must be unique.
The system will check for the certificate for the “dovecot” service.
The system will attempt to verify that the certificate for the “dovecot” service is still valid using OCSP (Online Certificate Status Protocol).
The system will attempt to replace the revoked certificate for the “dovecot” service with a signed certificate from the cPanel Store.
The system will attempt to install a certificate for the “dovecot” service from the system ssl storage.
None of the certificates in the system ssl storage were acceptable to use for the “dovecot” service.
The system will attempt to install a certificate for the “dovecot” service from the cPanel store.
[WARN] (XID g6uccb) Your certificate for “xxxxx.x.example.eu” (ID: xxxxx.x.example.eu_c0fa9_d0d1f_1501631999_65c875f6bd56a74b587f4476b0b323bf) already has the same “friendly_name” (xxxxx.x.example.eu and www.xxxxx.x.example.eu) as the new certificate. Each certificate’s “friendly_name” must be unique.
The system will check for the certificate for the “exim” service.
The system will attempt to verify that the certificate for the “exim” service is still valid using OCSP (Online Certificate Status Protocol).
The system will attempt to replace the revoked certificate for the “exim” service with a signed certificate from the cPanel Store.
The system will attempt to install a certificate for the “exim” service from the system ssl storage.
None of the certificates in the system ssl storage were acceptable to use for the “exim” service.
The system will attempt to install a certificate for the “exim” service from the cPanel store.
[WARN] (XID uhhtrz) Your certificate for “xxxxx.x.example.eu” (ID: xxxxx.x.example.eu_c0fa9_d0d1f_1501631999_65c875f6bd56a74b587f4476b0b323bf) already has the same “friendly_name” (xxxxx.x.example.eu and www.xxxxx.x.example.eu) as the new certificate. Each certificate’s “friendly_name” must be unique.
The system will check for the certificate for the “ftp” service.
The system will attempt to verify that the certificate for the “ftp” service is still valid using OCSP (Online Certificate Status Protocol).
The system will attempt to replace the revoked certificate for the “ftp” service with a signed certificate from the cPanel Store.
The system will attempt to install a certificate for the “ftp” service from the system ssl storage.
None of the certificates in the system ssl storage were acceptable to use for the “ftp” service.
The system will attempt to install a certificate for the “ftp” service from the cPanel store.
[WARN] (XID gx96hp) Your certificate for “xxxxx.x.example.eu” (ID: xxxxx.x.example.eu_c0fa9_d0d1f_1501631999_65c875f6bd56a74b587f4476b0b323bf) already has the same “friendly_name” (xxxxx.x.example.eu and www.xxxxx.x.example.eu) as the new certificate. Each certificate’s “friendly_name” must be unique.

24x7serversecurity · May 28, 2017

Hello,

Access your WHM using IP address http://<ip address>:2087 and see if you can reinstall SSL certs on all the Services (Home » Service Configuration » Manage Service SSL Certificates). Try installing Free cPanel SSL or Let's Encrypt SSL on cPanel service.

Elvis Ceh · May 29, 2017

Hi, thanks but I cant access to WHM or Cpanel neither with the hostname nor by the ip address. I got this message in Chrome, IE or Firefox.

Code:

xxxxx.x.example.eu normally uses encryption to protect your information. When Google Chrome tried to connect to xxxxx.x.example.eu this time, the website sent back unusual and incorrect credentials. This may happen when an attacker is trying to pretend to be xxxxx.x.example.eu, or a Wi-Fi sign-in screen has interrupted the connection. Your information is still secure because Google Chrome stopped the connection before any data was exchanged.

You cannot visit xxxxx.x.example.eu right now because its certificate has been revoked. Network errors and attacks are usually temporary, so this page will probably work later.

cPanelMichael · May 29, 2017

Hello,

You can directly access Web Host Manager over the non-SSL using the following URL format if you want to try regenerating the SSL certificate:
Code:
https://IP:2086
However, feel free to open a support ticket using the link in my signature if you'd like us to take a closer look and see what's happening. You can post the ticket number here and we will update this thread with the outcome.

Thank you.

Forums

The Community Forums

Interact with an entire community of cPanel & WHM users!

SSL certificate revoked

Elvis Ceh Registered

24x7serversecurity Active Member

Elvis Ceh Registered

cPanelMichael Forums Analyst
Staff Member

Certificate Revoked