SSL error after last WHM update (92.0.6)

[MindServer]

Hi,

After the last WHM/cPanel update (92.0.6) I'm receiving this error each time that AutoSSL (Let's Encrypt) renew the SSL:

domain.com: AutoSSL certificate installed!

AutoSSL has renewed “domain.com”’s Domain Validated (DV) SSL certificate. The new certificate lacks 7 of the website’s domains:

-------------

mail.domain.com (checked on Jan 2, 2021 at 10:04:41 PM UTC)

There is no recorded error on the system for “mail.domain.com”. This might mean that this domain failed DCV (Domain Control Validation) when the system requested the new certificate, but the domain has since passed DCV.

-------------

domain.com (checked on Jan 2, 2021 at 10:04:41 PM UTC)

There is no recorded error on the system for “www.domain.com”. This might mean that this domain failed DCV (Domain Control Validation) when the system requested the new certificate, but the domain has since passed DCV.

-------------

cpanel.domain.com (checked on Jan 2, 2021 at 10:04:41 PM UTC)

There is no recorded error on the system for “cpanel.domain.com”. This might mean that this domain failed DCV (Domain Control Validation) when the system requested the new certificate, but the domain has since passed DCV.

ETC.
ETC.
ETC.

The SSL works correctly in this website, but WHM/cPanel sent me this message error each time that he renew a SSL, why happens?.

Thank you very much. Have a nice day.

 

[cPRex]

Hey there! Have you made any changes to the DNS of the domain? Are you able to reach the subdomains in a browser that are mentioned in the message? If the DNS for the domains does not exist, it will not be able to secure them, but it's possible they were included in the previous certificate if things have changed.

 

[MindServer]

Hey there! Have you made any changes to the DNS of the domain? Are you able to reach the subdomains in a browser that are mentioned in the message? If the DNS for the domains does not exist, it will not be able to secure them, but it's possible they were included in the previous certificate if things have changed.

Hi,

We not did any DNS change, this happens in every domain which renew her SSL.

We can access to this website and other services without problems.

Thank you.

 

[cPRex]

Do you see anything different when you manually check the AutoSSL for the domain? You can do that through the WHM >> Manage AutoSSL page, or you can run this for specific output for the user experiencing the issue:

/usr/local/cpanel/bin/autossl_check --user=username

 

[MindServer]

Hi,

I executed AutoSSL again for some users that send me error, this is the result:

Log for the AutoSSL run for “abcdefg”: Thursday, January 7, 2021 12:28:24 AM GMT+0100 (Let’s Encrypt™)

12:28:24 AM AutoSSL’s configured provider is “Let’s Encrypt™”.
Analyzing “abcdefg”’s domains …
12:28:24 AM Analyzing “domain.com” (website) …
12:28:24 AM SUCCESS TLS Status: OK
Certificate expiry: 4/6/21, 12:04 AM UTC (89.03 days from now)
12:28:24 AM SUCCESS This user’s SSL coverage is already optimal.

Thank you.

 

[cPRex]

For those same domains, is it no longer sending you the message about the missing SSL on the subdomains, or are you continuing to receive that as well? That output looks normal to me for an SSL that was just recently issued and working well.

 

[MindServer]

For those same domains, is it no longer sending you the message about the missing SSL on the subdomains, or are you continuing to receive that as well? That output looks normal to me for an SSL that was just recently issued and working well.

Ok, thank you very much. I will check if receive again this notifications and will notify you.

Have a nice day.

 

[MindServer]

Hi @cPRex

Still I'm receiving this warning every time that some domain renew her SSL. I don't know what do.

Any idea?. Is the same email but changing the domain.

Thank you very much. Have a nice day.

 

[cPRex]

It might be best to get a ticket put in for that so we can check it out for you.

 

[MindServer]

It might be best to get a ticket put in for that so we can check it out for you.

The sysadmin checked him and told me that this warning is because Let's encrypt limit the connection to provide the certificate.

Please, can you confirm me that the daily limit can provokes this warning and we not have any problem?. I need to be calm because this is a production server.

My question is because I have another server with only 2 domains and I also receive this warning. Can I exceed the "Let's Encrypt" daily limit with only 2 domains?

Thank you very much. Have a nice day.

 

[cPRex]

Let's Encrypt definitely has more rate limiting in place than the cPanel provided SSL tools, so that is certainly possible. However, if your output still looks like the message from January 6 that just indicates things are working normally.

 

[MindServer]

Let's Encrypt definitely has more rate limiting in place than the cPanel provided SSL tools, so that is certainly possible. However, if your output still looks like the message from January 6 that just indicates things are working normally.

Thank you very much.

My question is because I have another server with only 2 domains and I also receive this warning. Can I exceed the "Let's Encrypt" daily limit with only 2 domains? .

 

[cPRex]

It's possible if there are many sub/addon domains on one of the domains. You're always welcome to open a ticket directly with us so we can check things for sure.