How does WHM allow AutoSSL DCV check to complete when using HTTPS redirects?

Question

Is there a cPanel Feature that can allow AutoSSL DCV check, using the Sectigo Provider, to work with an HTTPS redirect in place?

Answer

Yes.

Inside the cPanel interface, under "Domains," you can use the "Force HTTPS Redirect" toggle for your site.

cPanel: Home » Domains » Domains » List Domains

Enable the "Force HTTPS Redirect" toggle on your domain.

This will cause the following Apache Rewrite Rules to be used.

# Global DCV Exclude - Rewrites
RewriteEngine on
RewriteCond %{REQUEST_URI} ^/\.well-known/cpanel-dcv/[0-9a-zA-Z_-]+$ [OR]
RewriteCond %{REQUEST_URI} ^/\.well-known/pki-validation/[A-F0-9]{32}\.txt(?:\ Sectigo\ DCV)?$ [OR]
RewriteCond %{REQUEST_URI} ^/\.well-known/pki-validation/(?:\ Ballot169)?# Exclude proxy subdomains as we need rewrites to capture the DCV requests
RewriteCond %{HTTP_HOST} !^(?:autoconfig|autodiscover|cpanel|cpcalendars|cpcontacts|webdisk|webmail|whm)\.
RewriteRule ^ - [END]

These rules allow the Sectigo AutoSSL Provider to work while keeping the HTTPS redirect in place.