Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

SSL certificate revoked

Discussion in 'Security' started by Elvis Ceh, May 28, 2017.

  1. Elvis Ceh

    Elvis Ceh Registered

    Joined:
    May 28, 2017
    Messages:
    2
    Likes Received:
    0
    Trophy Points:
    1
    Location:
    Croatia
    cPanel Access Level:
    Root Administrator
    I have sudenly issue with access to WHM and CPanel because SSL certificate is revoked even still valid till september 2017.

    Please check - Removed -

    I also cant do /usr/local/cpanel/bin/checkallsslcerts

    Code:
    The system will check for the certificate for the “cpanel” service.
    The system will attempt to verify that the certificate for the “cpanel” service is still valid using OCSP (Online Certificate Status Protocol).
    The system will attempt to replace the revoked certificate for the “cpanel” service with a signed certificate from the cPanel Store.
    The system will attempt to install a certificate for the “cpanel” service from the system ssl storage.
    None of the certificates in the system ssl storage were acceptable to use for the “cpanel” service.
    The system will attempt to install a certificate for the “cpanel” service from the cPanel store.
    [WARN] (XID ey26j2) Your certificate for “xxxxx.x.example.eu” (ID: xxxxx.x.example.eu_c0fa9_d0d1f_1501631999_65c875f6bd56a74b587f4476b0b323bf) already has the same “friendly_name” (xxxxx.x.example.eu and www.xxxxx.x.example.eu) as the new certificate. Each certificate’s “friendly_name” must be unique.
    The system will check for the certificate for the “dovecot” service.
    The system will attempt to verify that the certificate for the “dovecot” service is still valid using OCSP (Online Certificate Status Protocol).
    The system will attempt to replace the revoked certificate for the “dovecot” service with a signed certificate from the cPanel Store.
    The system will attempt to install a certificate for the “dovecot” service from the system ssl storage.
    None of the certificates in the system ssl storage were acceptable to use for the “dovecot” service.
    The system will attempt to install a certificate for the “dovecot” service from the cPanel store.
    [WARN] (XID g6uccb) Your certificate for “xxxxx.x.example.eu” (ID: xxxxx.x.example.eu_c0fa9_d0d1f_1501631999_65c875f6bd56a74b587f4476b0b323bf) already has the same “friendly_name” (xxxxx.x.example.eu and www.xxxxx.x.example.eu) as the new certificate. Each certificate’s “friendly_name” must be unique.
    The system will check for the certificate for the “exim” service.
    The system will attempt to verify that the certificate for the “exim” service is still valid using OCSP (Online Certificate Status Protocol).
    The system will attempt to replace the revoked certificate for the “exim” service with a signed certificate from the cPanel Store.
    The system will attempt to install a certificate for the “exim” service from the system ssl storage.
    None of the certificates in the system ssl storage were acceptable to use for the “exim” service.
    The system will attempt to install a certificate for the “exim” service from the cPanel store.
    [WARN] (XID uhhtrz) Your certificate for “xxxxx.x.example.eu” (ID: xxxxx.x.example.eu_c0fa9_d0d1f_1501631999_65c875f6bd56a74b587f4476b0b323bf) already has the same “friendly_name” (xxxxx.x.example.eu and www.xxxxx.x.example.eu) as the new certificate. Each certificate’s “friendly_name” must be unique.
    The system will check for the certificate for the “ftp” service.
    The system will attempt to verify that the certificate for the “ftp” service is still valid using OCSP (Online Certificate Status Protocol).
    The system will attempt to replace the revoked certificate for the “ftp” service with a signed certificate from the cPanel Store.
    The system will attempt to install a certificate for the “ftp” service from the system ssl storage.
    None of the certificates in the system ssl storage were acceptable to use for the “ftp” service.
    The system will attempt to install a certificate for the “ftp” service from the cPanel store.
    [WARN] (XID gx96hp) Your certificate for “xxxxx.x.example.eu” (ID: xxxxx.x.example.eu_c0fa9_d0d1f_1501631999_65c875f6bd56a74b587f4476b0b323bf) already has the same “friendly_name” (xxxxx.x.example.eu and www.xxxxx.x.example.eu) as the new certificate. Each certificate’s “friendly_name” must be unique.
    
     
    #1 Elvis Ceh, May 28, 2017
    Last edited by a moderator: May 28, 2017
  2. 24x7serversecurity

    24x7serversecurity Active Member

    Joined:
    Aug 31, 2015
    Messages:
    38
    Likes Received:
    6
    Trophy Points:
    8
    Location:
    India
    cPanel Access Level:
    Root Administrator
    Hello,

    Access your WHM using IP address http://<ip address>:2087 and see if you can reinstall SSL certs on all the Services (Home » Service Configuration » Manage Service SSL Certificates). Try installing Free cPanel SSL or Let's Encrypt SSL on cPanel service.
     
  3. Elvis Ceh

    Elvis Ceh Registered

    Joined:
    May 28, 2017
    Messages:
    2
    Likes Received:
    0
    Trophy Points:
    1
    Location:
    Croatia
    cPanel Access Level:
    Root Administrator
    Hi, thanks but I cant access to WHM or Cpanel neither with the hostname nor by the ip address. I got this message in Chrome, IE or Firefox.
    Code:
    xxxxx.x.example.eu normally uses encryption to protect your information. When Google Chrome tried to connect to xxxxx.x.example.eu this time, the website sent back unusual and incorrect credentials. This may happen when an attacker is trying to pretend to be xxxxx.x.example.eu, or a Wi-Fi sign-in screen has interrupted the connection. Your information is still secure because Google Chrome stopped the connection before any data was exchanged.
    
    You cannot visit xxxxx.x.example.eu right now because its certificate has been revoked. Network errors and attacks are usually temporary, so this page will probably work later.
    
     
    #3 Elvis Ceh, May 29, 2017
    Last edited by a moderator: May 29, 2017
  4. cPanelMichael

    cPanelMichael Forums Analyst
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    38,658
    Likes Received:
    1,427
    Trophy Points:
    363
    cPanel Access Level:
    Root Administrator
    Hello,

    You can directly access Web Host Manager over the non-SSL using the following URL format if you want to try regenerating the SSL certificate:

    Code:
    https://IP:2086
    However, feel free to open a support ticket using the link in my signature if you'd like us to take a closer look and see what's happening. You can post the ticket number here and we will update this thread with the outcome.

    Thank you.
     
Loading...

Share This Page