SOLVED The cPanel Store returned an error (X::TemporarilyUnavailable)

[ljj3]

On service cert renewal last night on 2 machines:

The system failed to acquire a signed certificate from the cPanel Store because of the following error: (XID yhjh8r) The cPanel Store returned an error (X::TemporarilyUnavailable) in response to the request “POST ssl/certificate/whm-license/90-day”: We were unable to process your request. Please try again later.

 

[Steini Petur]

Hi,

It's just a temporary issue somewhat check my reply

Checkallsslcerts error

Hi, same problem here! The SSL for the services expired 11/27/2021 and since then no new certificate installed. I get the following error: The system failed to acquire a signed certificate from the cPanel Store because of the following error: (XID b9xuxw) The cPanel Store returned an error...

forums.cpanel.net

I ran the same thing 3-4times until I got through to the cpStore

 

[ljj3]

Happened again last night....

What is the manual workaround?

 

[ljj3]

Happened again last night....

What is the manual workaround?

Ok - the 30/3 day service cert issue....

Perform all 3 commands if it fails or just the last one?

 

[cPRex]

As @Steini Petur mentioned, there are known issues with the Sectigo network at this time. We're hoping they fix it soon, but I don't have any other updates to provide on my end.

 

[ljj3]

mine expire at midnight - so should I start pounding away or wait till evening when load is lighter?

 

[cPRex]

@ljj3 - if they are domain SSLs, you can switch to Let's Encrypt. If its the hostname SSL, I can only recommend continuing to try.

 

[ljj3]

@ljj3 - if they are domain SSLs, you can switch to Let's Encrypt. If its the hostname SSL, I can only recommend continuing to try.

yep - service ssl - we use LE on domains.....

 

[kgs]

We're getting this, too. Second day in a row.

The system failed to acquire a signed certificate from the cPanel Store because of the following error: (XID 7hru39) The cPanel Store returned an error (X::TemporarilyUnavailable) in response to the request “POST ssl/certificate/whm-license/90-day”: We were unable to process your request. Please try again later.

 

[ljj3]

Just try manually - third time it worked....

 

[kgs]

Thanks @ljj3 Can you provide the steps for doing this manually?

 

[cPRex]

You can run AutoSSL manually through WHM >> Manage AutoSSL for each user, or you can run the /usr/local/cpanel/bin/autossl_check command with either of these two options:

/usr/local/cpanel/bin/autossl_check --username
OR
/usr/local/cpanel/bin/autossl_check --all

 

[kgs]

Thank you @cPRex

Perhaps I'm not understanding the warning, then.

For the past 2 days, the server has sent me an email with the warning I posted earlier. "The system failed to acquire a signed certificate from the cPanel Store" etc.

However, for the last 2 days, when I check the AutoSSL logs in WHM, there are logs there with timestamps more than 6 hours after the email warnings, and the log is filled with success TLS statuses. (As far as I can tell, the only ones that are on-error are for domains no longer on the server, which should be removed.)

So, what does all that mean? Thanks!

 

[cPRex]

@kgs - at this point we'd need to examine the server directly to get more details. I'd hate to guess on the cause and further add confusion.

Could you submit a ticket to our team and then post the number here so I can follow along?

 

[kgs]

Thanks @cPRex. I did not get the email warning this morning, so it appears to have resolved itself. I'll circle back if I start seeing issues again.

 

[kgs]

Hey @cPRex we got that email warning again. I noticed that our server's main certificate expires on Feb 25, 2022. Could that be the certificate the server is trying to renew? How far in advance does the server try to renew that certificate?

Anyway, I opened a ticket as you suggested. #94413175

Thanks!

 

[cPRex]

@kgs - yes, if it's the hostname certificate that is not something that would be fixed by switching to Let's Encrypt.

I'm following along with that ticket on my end as well now.

 

[cPRex]

I see that our support team was able to resolve this issue by moving the /var/cpanel/hostname_cert_csrs directory out of the way and then requesting a new certificate.

 

[horizon2021]

I'm also seeing this behavior on a server 5-days in a row now during the nightly cron the same as the first post:
The cPanel Store returned an error (X::TemporarilyUnavailable) in response to the request “POST ssl/certificate/whm-license/90-day

 

[Reado]

AutoSSL is failing and some of our SSL certificates have now expired as a result!

This error appears in the AutoSSL logs for the domains that have expired:

"The response to the HTTP (Hypertext Transfer Protocol) “POST” request from “https://store.cpanel.net/json-api/ssl/certificate/free” indicated an error (500, Internal Server Error): <!DOCTYPE HTML PUBLIC "-//IETF/…"

EDIT: Now getting "9:41:41 AM The “cPanel (powered by Sectigo)” provider cannot currently accept incoming requests. The system will try again later."